Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The Office 365 System Connector enables you to manage the identity and access lifecycle of users, resources and various other objects in the Office 365 cloud . Like any other CoreOne Suite System Connector this includes functionality to create, read, update and delete users as well as the assignment of various access rights such as the assignment of groups, teams and other objects. The Office 365 System Connector target system parameters is also applied for Exchange Online.

Identity management

There are 2 types of identity management for this system connector: Directly and indirectly managed identities:

  • Directly managed: An Identity that is created from a CoreIdentity and then provisioned to Microsoft Entra ID.

  • Indirectly managed: An Identity that is created from a CoreIdentity and linked to an existing Microsoft Entra ID user. This Microsoft Entra ID user is synchronized from Active Directory.

If Active Directory (AD) is in use and AD users are synchronized via Microsoft Entra Connect to Microsoft Entra ID, the indirectly managed method might be a viable option. CoreOne Suite creates a reference to Microsoft Entra ID users by linking them via the Object ID.

...

  1. Identities are provisioned from an HR System into CoreOne Suite. Active Directory and Microsoft Entra ID identities are created.

  2. CoreOne Suite then provisions the identities only into the Active Directory.

  3. Microsoft Entra Connect gets the Users and prepares them to synchronize into Microsoft Entra ID.

  4. AD users are provisioned into Microsoft Entra ID.

  5. CoreOne then matches the UPN in CoreOne Suite identities with Microsoft Entra ID users and creates an Object ID link.

Prerequisite

To use the Exchange Online System Connector, the server where the System Connector is installed needs the ExchangeOnlineManagementPowershell-Module. Run the follwing command in Windows Powershell:

Code Block
languagepowershell
Install-Module ExchangeOnlineManagement

For more information, checkout the follwing documentation: https://learn.microsoft.com/en-us/powershell/exchange/exchange-online-powershell-v2?view=exchange-ps&source=recommendations#install-the-exchange-online-powershell-module.

System Identity Types

The following system identity types are supported:

...

Parameter

Mandatory

Example

Description

Application Identifier

4deeecf9-c063-4763-94c6-3db66e4ae679

The unique identifier of the application generated in the administration panel

Application SecretCertificate Subject

🔑 * * * * * * * *

The secret to the application generated in the administration panel

Connection URI

https://outlook.office365.com/powershell-liveid/

The connection URI to the outlook powershell endpointMicrosoft Entra ID App Certificate

The self-signed certification is used to ensure client authentication with Microsoft Entra ID. This Certificate must be registered in the administration panel

Domain

m365x289341.onmicrosoft.com

The Office 365 tenant

Password

🔑 * * * * * * * *

The password of the user

Tenant Identifier

97b62607-cb86-48ba-9a28-e8e1e7c4c104

The unique tenant identifier

Tenant Name

Contoso - Test Tenant

The Tenant name

Username (Marked for deprecation)

admin@m365x28e341.onmicrosoft.com

The username to connect to

Password (Marked for deprecation)

🔑 * * * * * * * *

The password of the user

Connection URI (Marked for deprecation)

https://outlook.office365.com/powershell-liveid/

The connection URI to the outlook powershell endpoint

Application Secret (Marked for deprecation)

🔑 * * * * * * * *

The secret to the application generated in the administration panel

Note

From version 9.0 onwards, the parameters Username, Password, Connection URI, and Application Secret are marked as deprecated.