Chat now with support
Chat with Support

Identity Manager 8.0 - Administration Guide for Connecting to Azure Active Directory

Managing Azure Active Directory Environments Setting Up Synchronization with an Azure Active Directory Tenant Base Data for Managing Azure Active Directory Azure Active Directory Core Directories Azure Active Directory user accounts Azure Active Directory groups Azure Active Directory Administrator Roles Azure Active Directory Subscriptions and Service Plans
Azure Active Directory Subscriptions Disabled Azure Active Directory Service Plan
Reports about Azure Active Directory Objects Appendix: Configuration Parameters for Managing Azure Active Directory Appendix: Default Project Template for Azure Active Directory

Assigning Owners to Azure Active Directory Groups

Assigning Owners to Azure Active Directory Groups

A group owner can edit group properties.

To assign owners to a group

  1. Select the category Azure Active Directory | Groups.
  2. Select the group in the result list.
  3. Select Assign owner in the task view.
  4. Select the table containing the owner from the menu at the top of the form. You have the following options:
    • Azure Active Directory user accounts
  5. Assign owners in Add assignments.

    - OR -

    Remove owners in Remove assignments.

  6. Save the changes.

Assigning Extended Properties to an Azure Active Directory Group

Assigning Extended Properties to an Azure Active Directory Group

Extended properties are meta objects that cannot be mapped directly in the One Identity Manager, for example, operating codes, cost codes or cost accounting areas.

To specify extended properties for a group

  1. Select the category Azure Active Directory | Groups.
  2. Select the group in the result list.
  3. Select Assign extended properties in the task view.
  4. Assign extended properties in Add assignments.

    The view- OR -

    Remove extended properties from Remove assignments.

  5. Save the changes.

For more detailed information about using extended properties, see the One Identity Manager Identity Management Base Module Administration Guide.

Deleting Azure Active Directory Groups

Deleting Azure Active Directory Groups

To delete a group

  1. Select the category Azure Active Directory | Groups.
  2. Select the group in the result list.
  3. Delete the group using .
  4. Confirm the security prompt with Yes.

The group is deleted completely from the One Identity Manager database and from Azure Active Directory.

Azure Active Directory Administrator Roles

Azure Active Directory Administrator Roles

By using administrator roles, you can assign administrative permissions to users. Azure Active Directory recognizes several administrator roles, which fulfill different functions. For more detailed information about administrator roles, see the Azure Active Directory documentation from Microsoft.

Administrator roles are loaded into One Identity Manager by synchronization. You can edit individual master data of administrator roles but cannot create new administrator roles in One Identity Manager.

To add users to administrator roles, assign the administrator roles directly to the user. This may be administrator role assignments to departments, cost centers, location, business roles or to the IT Shop.

Related Documents