Office 365 roles deployed in organizations ensure that the users have access to the resources according to the assigned roles at all times. Managing the Office 365 roles assigned to licensed users includes assigning appropriate roles to new users and modifying the roles assigned to existing users.
Applying the Office 365 Roles Management policy to a container enables the administrator to manage the Office 365 roles assignment for all the Azure AD users in that container. This ensures that all Azure AD users get the required privileges and access to all the relevant resources assigned as per the roles included immediately upon creation.
When Azure users are created in Active Directory, Active Roles enables you to assign the required Office 365 roles. The Office 365 Roles Management policy can be configured to assign the required Office 365 roles to new users, select the individual roles while assigning to the users, and configure conditions to assign roles to only the users who satisfy the required conditions. Active Roles relies on this policy to perform the Office 365 roles management automatically when an Azure AD user is created or modified.
On the Policy Conditions page, you can set up policy conditions—criteria the policy uses to determine what objects can be controlled by the policy. If you specify no conditions, the policy affects any objects of the type you have selected on the previous page. Otherwise, it only affects the objects matching the conditions you specify using this page.
Figure 72: Set Up Condition page
Click Property to display the Select Object Property dialog box where you can select the object property you want to include in the condition.
Click Configure Value, to compose the value for which you want to apply the selected requirement. The Configure Value dialog box is displayed, which enables you to set up the value.
On the Policy Conditions page, select the required licenses from the Office 365 roles list and click Next. The Enforce Policy Page is displayed.
Figure 73: Enforce Policy page
Click Next and then click Finish.
© 2020 One Identity LLC. ALL RIGHTS RESERVED. Feedback 이용 약관 개인정보 보호정책