Identity Manager 8.1 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment Managing SharePoint Online user accounts and employees Managing the assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles
Handling of SharePoint Online objects in Web Portal Basic data for managing a SharePoint Online environment Appendix: Configuration parameters for managing SharePoint Online Appendix: Default project template for SharePoint Online Appendix: Editing system objects About us

Handling of SharePoint Online objects in Web Portal

One Identity Manager enables its users to perform various tasks simply using a Web Portal.

  • Managing user accounts and employees

    An account definition can be requested by shop customers in Web Portal when it is assigned to an IT Shop shelf. The request undergoes a defined approval procedure. The user account is not created until it has been agreed by an authorized person, such as a manager.

  • Attestation

    To enable this, attestation policies are configured in Manager. The attesters use the Web Portal to approve attestation cases.

  • Governance Administration

    The rules are checked regularly, and if changes are made to the objects in One Identity Manager. Compliance rules are defined in Manager. Supervisors use the Web Portal to check and resolve rule violations and to grant exception approvals.

    If the Company Policies Module is available, company policies can be defined for the target system objects mapped in One Identity Manager and their risks evaluated. Company policies are defined in Manager. Supervisors use the Web Portal to check policy violations and and to grant exception approvals.

  • Risk assessment

    The One Identity Manager provides default calculation functions for this. The calculation functions can be modified in the Web Portal.

  • Reports and statistics

  • One Identity Manager Web Portal User Guide

  • One Identity Manager Attestation Administration Guide

  • One Identity Manager Compliance Rules Administration Guide

  • One Identity Manager Company Policies Administration Guide

  • One Identity Manager Risk Assessment Administration Guide

Basic data for managing a SharePoint Online environment

To manage a SharePoint Online environment in One Identity Manager, the following basic data is relevant.

SharePoint Online authentication modes

The following master data is supplied for the authentication mode.

Table 35: Authentication mode properties
Property Description
System ID Name of the authentication mode. For SharePoint Online, AzureAD is the only authentication mode.
User prefix Prefix for formatting a login name for new user accounts. The associated authentication object is not a group. This means, the user account option Group is not set.
Group prefix Prefix for formatting a login name for new user accounts. The associated authentication object is a group. This means, the user account option Group is set.
Column for login name Column in the table Person used to format the login name for new user accounts. This information is required if employees are linked to user accounts though automatic employee assignment.

Job server for SharePoint Online-specific process handling

In order to handle SharePoint Online -specific processes in One Identity Manager, the synchronization server and its server functions must be declared. You have several options for defining a server's functionality:

  • Create an entry for the Job server in Designer under Base Data | Installation | Job server. For detailed information, see the One Identity Manager Configuration Guide.

  • Select an entry for the Job server in SharePoint Online | Basic configuration data | Server in Manager and edit the Job server master data.

    Use this task if the Job server has already been declared in One Identity Manager and you want to configure special functions for the Job server.

To edit a Job server and its functions

  1. In Manager, select the category SharePoint Online | Basic configuration data | Server.

  2. Select the Job server entry in the result list.

  3. Select Change master data.

  4. Edit the Job server's master data.

  5. Select Assign server functions in the task view and specify server functionality.

  6. Save the changes.
Detailed information about this topic
Related Topics
Related Documents