立即与支持人员聊天
与支持团队交流

Identity Manager 9.2.1 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment
Setting up initial synchronization with a SharePoint Online tenant SharePoint Online synchronization features Customizing the synchronization configuration Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Managing SharePoint Online user accounts and identities Managing assignments of SharePoint Online groups and roles Mapping SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles Setting up SharePoint Online site collections and sites Reports about SharePoint Online objects
Handling of SharePoint Online objects in the Web Portal Basic data for managing a SharePoint Online environment Troubleshooting a SharePoint Online connection Configuration parameters for managing SharePoint Online Default project template for SharePoint Online Editing system objects

Editing search criteria for automatic identity assignment

The criteria for identity assignments are defined for the site collection. You specify which user account properties must match the identity’s properties such that the identity can be assigned to the user account. You can limit search criteria further by using format definitions.

The search criterion is written in XML notation to the Search criteria for automatic identity assignment column (AccountToPersonMatchingRule) in the O3SSite table.

Search criteria are evaluated when identities are automatically assigned to user accounts. Furthermore, you can create a suggestion list for assignments of identities to user accounts based on the search criteria and make the assignment directly.

NOTE: Object definitions for user accounts that can have search criteria applied to them are predefined. For example, if you require other objects definitions that limit a preselection of user accounts, set up the respective custom object definitions in the Designer. For more information, see the One Identity Manager Configuration Guide.

To specify criteria for identity assignment

  1. In the Manager, select the SharePoint Online > Site collections category.

  2. Select the site collection in the result list.

  3. Select the Define search criteria for identity assignment task.

  4. Specify which user account properties must match with which identity so that the identity is linked to the user account.

    Table 10: Search criteria for user accounts

    Apply to

    Identity column

    Column for user account

    SharePoint Online user account (user authenticated)

    Default email address (DefaultEmailAddress)

    Email address (EMail)

  5. Save the changes.

For more information about defining search criteria, see the One Identity Manager Target System Base Module Administration Guide.

Related topics

Changing manage levels for SharePoint Online user accounts

The default manage level is applied if you create user accounts using automatic identity assignment. You can change a user account manage level later.

To change the manage level for a user account

  1. In the Manager, select the SharePoint Online > User accounts (user authenticated) category.

  2. Select the user account in the result list.

  3. Select the Change main data task.

  4. Select the manage level in the Manage level list on the General tab.

  5. Save the changes.

Assigning account definitions to linked SharePoint Online user accounts

An account definition can be subsequently assigned to user accounts with Linked status. This may be necessary, for example, if:

  • Identities and user accounts have been linked manually.

  • Automatic identity assignment is configured, but when a user account is inserted, no account definition is assigned in the SharePoint Online system.

To manage user accounts through account definitions

  1. Create an account definition.

  2. Assign an account definition to the site collection.

  3. Assign a user account in the Linked state to the account definition. The account definition's default manage level is applied to the user account.

    1. In the Manager, select the SharePoint Online > User accounts (user authenticated) > Linked but not configured > <site collection> category.

    2. Select the Assign account definition to linked accounts task.

    3. In the Account definition menu, select the account definition.

    4. Select the user accounts that contain the account definition.

    5. Save the changes.

Detailed information about this topic

Manually linking identities to SharePoint Online user accounts

An identity can be linked to multiple SharePoint Online user accounts, for example, so that you can assign an administrative user account in addition to the default user account. One identity can also use default user accounts with different types.

To manually assign user accounts to an identity

  1. In the Manager, select the Identities > Identities category.

  2. Select the identity in the result list and run the Assign SharePoint Online user accounts task.

  3. Assign the user accounts.

  4. Save the changes.
Related topics
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级