Chat now with support
Chat with Support

Identity Manager 8.1.4 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment Managing SharePoint Online user accounts and employees Managing the assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles
Handling of SharePoint Online objects in the Web Portal Basic data for managing a SharePoint Online environment Configuration parameters for managing SharePoint Online Default project template for SharePoint Online Editing system objects About us

SharePoint Online groups

You can use groups in SharePoint Online to provide users with the same permissions. Groups that you add for site collections are valid for all sites in that site collection. SharePoint Online roles that you define for a site are assigned directly to groups. All user accounts that are members of these groups obtain the permissions defined in the SharePoint Online roles for this site.

You can edit the following group data in the One Identity Manager:

  • Object properties like display name, owner, or visibility of memberships
  • Assigned SharePoint Online role and user accounts
  • Usage in the IT Shop
  • Risk assessment
  • Inheritance through roles and inheritance restrictions
Detailed information about this topic
Related topics

Creating SharePoint Online groups

To create a group

  1. In the Manager, select the SharePoint Online | Groups category.

  2. Click in the result list.

  3. On the master data form, edit the master data for the group.

  4. Save the changes.
Detailed information about this topic
Related topics

Editing master data for SharePoint Online groups

To edit group master data

  1. In the Manager, select the SharePoint Online | Groups category.

  2. Select the group in the result list.

  3. Select the Change master data task.

  4. Enter the required data on the master data form.

  5. Save the changes.
Detailed information about this topic
Related topics

SharePoint Online group master data

Enter the following master data for a group.

Table 25: SharePoint Online group master data
Property Description
Title Display name of the group.
Site collection Site collection the group is used in.
Owner Owner of the group. A SharePoint Online user account or a SharePoint Online group can be selected.
Service item Service item data for requesting the group through the IT Shop.
Risk index

Value for evaluating the risk of assigning the group to user accounts. Enter a value between 0 and 1. This input field is only visible if the QER | CalculateRiskIndex configuration parameter is activated.

Category Categories for group inheritance. Groups can be selectively inherited by user accounts. To do this, groups and user accounts are divided into categories. Select one or more categories from the menu.
Description Text field for additional explanation.

Hidden

Specifies whether or not the group is displayed in the user interface.

Memberships only visible to members Specifies whether only group members can see the list of members.
Group members can edit memberships Specifies whether all group members can edit the group memberships.
Request for membership permitted Specifies whether SharePoint Online users can request or end membership in these groups themselves.
Automatic membership on request Specifies whether SharePoint Online users automatically become members in the group once they request membership. The same applies when user end their membership.
Email address membership requested Email address that the group membership request or closure is sent to.

IT Shop

Specifies whether the group can be requested through the IT Shop. If this option is set, the group can be requested by the employees through the Web Portal and distributed with a defined approval process. The group can still be assigned directly to hierarchical roles.

Only for use in IT Shop

Specifies whether the group can only be requested through the IT Shop. If this option is set, the group can be requested by the employees through the Web Portal and distributed with a defined approval process. Direct assignment of the group to hierarchical roles or user accounts is not permitted.

Detailed information about this topic
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating