Chat now with support
Chat with Support

Identity Manager 8.1 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment Managing SharePoint Online user accounts and employees Managing the assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles
Handling of SharePoint Online objects in Web Portal Basic data for managing a SharePoint Online environment Appendix: Configuration parameters for managing SharePoint Online Appendix: Default project template for SharePoint Online Appendix: Editing system objects About us

Appendix: Configuration parameters for managing SharePoint Online

The following configuration parameters are additionally available in One Identity Manager after the module has been installed.

Table 39: Configuration parameters

Configuration parameters

Meaning

TargetSystem | SharePointOnline

Preprocessor relevant configuration parameter for controlling the database model components for the administration of the target system SharePoint Online. If the parameter is set, the target system components are available. Changes to the parameter require recompiling the database.

TargetSystem | SharePointOnline | Accounts

Parameter for configuring SharePoint Online user account data.

TargetSystem | SharePointOnline | Accounts |
MailTemplateDefaultValues

This configuration parameter contains the mail template used to send notifications if default IT operating data mapping values are used for automatically creating a user account. The Employee - new user account with default properties created mail template is used.

TargetSystem | SharePointOnline |
DefaultAddress

The configuration parameter contains the recipient's default email address for sending notifications about actions in the target system.

TargetSystem | SharePointOnline |
MaxFullsyncDuration

This configuration parameter contains the maximum runtime for synchronization. No recalculation of group memberships by the DBQueue Processor can take place during this time. If the maximum runtime is exceeded, group membership are recalculated.

TargetSystem | SharePointOnline |
PersonAutoDefault

This configuration parameter specifies the mode for automatic employee assignment for user accounts added to the database outside synchronization.

TargetSystem | SharePointOnline |
PersonAutoFullsync

This configuration parameter specifies the mode for automatic employee assignment for user accounts added to or updated in the database through synchronization.

Appendix: Default project template for SharePoint Online

A default project template ensures that all required information is added in One Identity Manager. This includes mappings, workflows and the synchronization base object. If you do not use a default project template you must declare the synchronization base object in One Identity Manager yourself.

Use a default project template for initially setting up the synchronization project. For custom implementations, you can extend the synchronization project with the Synchronization Editor.

For the synchronization of user accounts and permissions of a SharePoint Online, you use the project template SharePoint Onlinesynchronization. The template uses mappings for the following schema types.

Table 40: Mapping SharePoint Online schema types to tables in the One Identity Manager schema.
Schema type in SharePoint Online Table in the One Identity Manager Schema

Tenant

O3STenant

Site O3SSite
Group O3SGroup
Web O3SWeb
RoleAssignment O3SRLAsgn
RoleDefinition O3SRole
User O3SUser

NOTE: There is only one synchronization template in the One Identity Manager for the target system  SharePoint Online.

Appendix: Editing system objects

The following table describes permitted editing methods for SharePoint Online schema types and names restrictions on editing system objects in the Manager.

Table 41: Methods available for editing objects types
Type Read Add Delete Change
Tenant Yes No No No
Site collection Yes No No No

User account

Yes Yes Yes Yes
Group Yes Yes Yes Yes
Site Yes No No Yes
Role Yes Yes Yes Yes
Role assignment Yes No No Yes

About us

One Identity solutions eliminate the complexities and time-consuming processes often required to govern identities, manage privileged accounts and control access. Our solutions enhance business agility while addressing your IAM challenges with on-premises, cloud and hybrid environments.

Contacting us

For sales or other inquiries, visit https://www.oneidentity.com/company/contact-us.aspx or call +1-800-306-9329.

Technical support resources

Technical support is available to One Identity customers with a valid maintenance contract and customers who have trial versions. You can access the Support Portal at https://support.oneidentity.com/.

The Support Portal provides self-help tools you can use to solve problems quickly and independently, 24 hours a day, 365 days a year. The Support Portal enables you to:

  • Submit and manage a Service Request
  • View Knowledge Base articles
  • Sign up for product notifications
  • Download software and technical documentation
  • View how-to-videos at www.YouTube.com/OneIdentity
  • Engage in community discussions
  • Chat with support engineers online
  • View services to assist you with your product
Related Documents