Active Roles 7.4.4 supports the administration of cloud-only Azure users, guest users and contacts in a configured Azure tenant. For more information, see the following topics of the Active Roles Administration Guide:
Active Roles 7.4.4 supports the administration of cloud-only Azure users, guest users and contacts in a configured Azure tenant. For more information, see the following topics of the Active Roles Administration Guide:
The following Active Roles provisioning policies have been updated in version 7.4.4 to support cloud-only Azure objects as well:
Property Generation and Validation: This policy now also supports specifying object property rules for cloud-only Azure objects. For more information, see Property Generation and Validation in the Active Roles Administration Guide.
Group Membership AutoProvisioning: This policy now also supports specifying group membership rules to automatically assign (or unassign) cloud-only Azure objects to (or from) O365 Groups of the same Azure tenant. For more information, see Group Membership AutoProvisioning in the Active Roles Administration Guide.
Script Execution: This policy now also supports PowerShell and other custom scripts for provisioning cloud-only Azure objects. For more information, see Script Execution in the Active Roles Administration Guide.
In addition, as part of extending policy support for cloud-only Azure objects, Active Roles also received the following new built-in Policy Object and Script Module:
Azure CloudOnly Policy - Default Rules to Generate Properties: Provides provisioning rules for the properties of cloud-only Azure objects, specifying whether they are mandatory or optional, along with their supported values. Find the policy in the Configuration > Policies > Administration > BuiltIn node of the Active Roles MMC interface, and use it as a template for creating your own custom policies.
Generate User Password - Azure only: Provides a new PowerShell script to generate passwords for cloud-only Azure users that fulfill Azure password policy conditions. Find the script module in the Configuration > Script Modules > BuiltIn node of the Active Roles MMC interface, and use it as a template for creating your own password generation policy for cloud-only Azure users.
Active Roles 7.4.5 supports Modern Authentication in Azure BackSync workflows of the Active Roles Synchronization Service, replacing the previous Azure Admin user name and password-based authentication.
NOTE: Consider the following when using this feature:
If you previously had an Azure BackSync workflow configured, you will be prompted to reconfigure it in the Active Roles Synchronization Service Console.
If you previously had an Azure BackSync workflow configured, and you use more than one Azure Active Directory (Azure AD) in your deployment, you must specify the Azure AD for which you want to configure BackSync in the Active Roles Synchronization Service Console. For more information, see Upgrade and installation instructions and Knowledge Base Article 334291.
The SharePoint Online and Microsoft Skype for Business Online services are deprecated and no longer supported by the O365 Connector.
After creating a new client secret in the Azure Admin Portal, you may need to wait up to 15 minutes until the client secret is synchronized and can be queried by the Active Roles Synchronization Service when creating the new O365 Connector.
Active Roles 7.5 reintroduces support for configuring Microsoft OneDrive storage for hybrid and cloud-only Azure users in consented Azure tenants. Find the new OneDrive configuration settings in the Azure AD Configuration > Modify (Tenant details) window of the Active Roles Configuration Center. With the new implementation, the former OneDrive settings on the Active Roles Web Interface have been removed.
For more information, see Enabling OneDrive in an Azure tenant in the Active Roles Administration Guide.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center