Chat now with support
Chat with Support

Identity Manager 9.0 LTS - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment
Setting up initial synchronization with a SharePoint Online tenant SharePoint Online synchronization features Customizing the synchronization configuration Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Managing SharePoint Online user accounts and employees Managing assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles Setting up SharePoint Online site collections and sites Reports about SharePoint Online objects
Handling of SharePoint Online objects in the Web Portal Basic data for managing a SharePoint Online environment Troubleshooting a SharePoint Online connection Configuration parameters for managing SharePoint Online Default project template for SharePoint Online Editing system objects

Editing the synchronization project for a SharePoint Online tenant

Synchronization projects in which an Azure Active Directory tenant is already used as a base object can also be opened in the Manager. You can, for example, check the configuration or view the synchronization log in this mode. The Synchronization Editor is not started with its full functionality. You cannot run certain functions, such as, running synchronization or simulation, starting the target system browser and others.

NOTE: The Manager is locked for editing throughout. To edit objects in the Manager, close the Synchronization Editor.

To open an existing synchronization project in the Synchronization Editor

  1. In the Manager, select the SharePoint Online > Tenants category.

  2. Select the tenant in the result list.

  3. Select the Change main data task.

  4. Select the Edit synchronization project task.

Related topics

SharePoint Online user accounts

SharePoint Online user accounts provide the information necessary for user authentication, such as, the authentication mode and login names. In addition, permissions of users in a site collection are specified in the user accounts.

Each SharePoint Online user account represents an object from an authentication system trusted by the SharePoint Online system. In SharePoint Online, the authentication system is Azure Active Directory. The Azure Active Directory target system must be administrated in One Identity Manager. so that the object used for authentication on the usSharePoint Onlineer account can be saved as the authentication object. This means the SharePoint Online user account permissions are mapped to employees managed in One Identity Manager. One Identity Manager makes it possible for you to obtain an overview of all an employee's SharePoint Online access permissions. SharePoint Online permissions can be attested and checked for compliance. Employees can request or obtain the SharePoint Online permissions they requires through their memberships in hierarchical roles or through the Web Portal when appropriately configured.

By default, the following objects can be assigned as authentication objects in One Identity Manager.

  • Azure Active Directory groups of Security group type (AADGroup table)

  • Azure Active Directory user accounts (AADUser table)

During synchronization, One Identity Manager tries to assign the matching authentication object using the login name.

A user account can be linked to an employee in One Identity Manager. You can also manage user accounts separately from employees.

NOTE: It is recommended to use account definitions to set up user accounts for company employees. In this case, some of the main data described in the following is mapped through templates from employee main data.

NOTE:

Related topics

Creating SharePoint Online user accounts

To create a user account

  1. In the Manager, select the SharePoint Online > User accounts (user authenticated) category.

    - OR -

    In the Manager, select the SharePoint Online > User accounts (group authenticated) category.

  2. Click in the result list.

  3. On the main data form, edit the main data of the user account.

  4. Save the changes.
Related topics

Editing main data of SharePoint Online user accounts

To edit main data of a user account

  1. In the Manager, select the SharePoint Online > User accounts (user authenticated) category.

    - OR -

    In the Manager, select the SharePoint Online > User accounts (group authenticated) category.

  2. Select the user account in the result list.

  3. Select the Change main data task.

  4. Edit the user account's resource data.

  5. Save the changes.
Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating