Chat now with support
Chat with Support

Identity Manager 8.1.4 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment Managing SharePoint Online user accounts and employees Managing the assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles
Handling of SharePoint Online objects in the Web Portal Basic data for managing a SharePoint Online environment Configuration parameters for managing SharePoint Online Default project template for SharePoint Online Editing system objects About us

Assigning SharePoint Online entitlements to SharePoint Online user accounts in One Identity Manager

In One Identity Manager, SharePoint Online entitlements can be assigned directly or indirectly to employees.

In the case of indirect assignment, employees, and entitlements are organized in hierarchical roles. The number of entitlements assigned to an employee is calculated from the position in the hierarchy and the direction of inheritance. If the employee has a SharePoint Online user account, the entitlements are assigned to this user account.

Entitlements can also be assigned to employees through IT Shop requests. To enable the assignment of entitlements using IT Shop requests, employees are added as customers in a shop. All entitlements assigned to this shop as products can be requested by the customers. After approval is granted, requested entitlements are assigned to the employees.

You can use system roles to group entitlements together and assign them to employees as a package. You can create system roles that contain only SharePoint Online entitlements. System entitlements from different target systems can also be grouped together in a system role.

To react quickly to special requests, you can also assign the entitlements directly to user accounts.

Prerequisites
  • The assignment of employees, SharePoint Online roles, and SharePoint Online groups is permitted for departments, cost centers, locations, or business roles.

    NOTE: If a SharePoint Online role refers to a permission level for which the Hidden option is set, no business roles and organizations can be assigned. These SharePoint Online roles can be neither directly nor indirectly assigned to user accounts or groups.
  • Group authenticated is not set in the user accounts.
  • User accounts are marked with the Groups can be inherited option.
  • User accounts and SharePoint Online entitlements belong to the same site collection.

For detailed information see the following guides:

Theme

Guide

Inheritance of company resources

One Identity Manager Identity Management Base Module Administration Guide

One Identity Manager Business Roles Administration Guide

Assigning company resources through IT Shop requests

One Identity Manager IT Shop Administration Guide

System roles

One Identity Manager System Roles Administration Guide

Detailed information about this topic

Assigning SharePoint Online entitlements to departments, cost centers, and locations

Assign groups and roles to departments, cost centers, and locations in order to assign them to user accounts through these organizations.

To assign a permission to a department, cost center or location (non role-based login):

  1. In the Manager, select one of the following categories:

    • SharePoint Online | Groups

    • SharePoint Online | Roles

  2. Select the entitlements in the result list.

  3. Select the Assign organizations task.

  4. In the Add assignments pane, assign the organizations:

    • On the Departments tab, assign departments.

    • On the Locations tab, assign locations.

    • On the Cost centers tab, assign cost centers.

    TIP: In the Remove assignments pane, you can remove assigned organizations.

    To remove an assignment

    • Select the organization and double-click .

  5. Save the changes.

To assign permissions to a department, cost center or location (role-based login)

  1. In the Manager, select the Organizations | Departments category.

    - OR -

    In the Manager, select the Organizations | Cost centers category.

    - OR -

    In the Manager, select the Organizations | Locations category.

  2. Select the department, cost center, or location in the result list.

  3. Select one of the following tasks.

    • Assign SharePoint Online groups

    • Assign SharePoint Online roles

  4. In the Add assignments pane, assign the entitlements.

    - OR -

    In the Remove assignments pane, remove the entitlements.

  5. Save the changes.
Related topics

Assigning SharePoint Online entitlements to business roles

Installed modules:

Business Roles Module

You assign entitlements to business roles so that these entitlements are assigned to user accounts through these business roles.

To assign an entitlement to business roles (non role-based login):

  1. In the Manager, select one of the following categories.

    • SharePoint Online | Groups

    • SharePoint Online | Roles

  2. Select the entitlements in the result list.

  3. Select the Assign business roles task.

  4. In the Add assignments pane, assign business roles.

    TIP: In the Remove assignments pane, you can remove assigned business roles.

    To remove an assignment

    • Select the business role and double-click .

  5. Save the changes.

To assign entitlements to a business role (role-based login):

  1. In the Manager, select the Business roles | <role class> category.

  2. Select the business role in the result list.

  3. Select one of the following tasks.

    • Assign SharePoint Online groups

    • Assign SharePoint Online roles

  4. In the Add assignments pane, assign the entitlements.

    - OR -

    In the Remove assignments pane, remove the entitlements.

  5. Save the changes.
Related topics

Adding SharePoint Online entitlements to system roles

Installed modules:

System Roles Module

Use this task to add an entitlement to system roles. When you assign a system role to an employee, the entitlement is inherited by all user accounts of this employee.

NOTE: Groups with the Only use in IT Shop option can only be assigned to system roles that also have this option set. For detailed information, see the One Identity Manager System Roles Administration Guide.

To assign a group to system roles:

  1. In the Manager, select one of the following categories.

    • SharePoint Online | Groups

    • SharePoint Online | Roles

  2. Select the entitlements in the result list.

  3. Select the Assign system roles task.

  4. In the Add assignments pane, assign system roles.

    TIP: In the Remove assignments pane, you can remove assigned system roles.

    To remove an assignment

    • Select the system role and double-click .

  5. Save the changes.
Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating