...
The Office 365 System Connector enables you to manage the identity and access lifecycle of users, resources and various other objects in the Office 365 cloud . Like any other CoreOne Suite System Connector this includes functionality to create, read, update and delete users as well as the assignment of various access rights such as the assignment of groups, teams and other objects. The Office 365 System Connector target system parameters is also applied for Exchange Online.
Identity management
There are 2 types of identity management for this system connector: Directly and indirectly managed identities:
Directly managed: An Identity that is created from a CoreIdentity and then provisioned to Microsoft Entra ID.
Indirectly managed: An Identity that is created from a CoreIdentity and linked to an existing Microsoft Entra ID user. This Microsoft Entra ID user is synchronized from Active Directory.
If Active Directory (AD) is in use and AD users are synchronized via Microsoft Entra Connect to Microsoft Entra ID, the indirectly managed method might be a viable option. CoreOne Suite creates a reference to Microsoft Entra ID users by linking them via the Object ID.
...
Identities are provisioned from an HR System into CoreOne Suite. Active Directory and Microsoft Entra ID identities are created.
CoreOne Suite then provisions the identities only into the Active Directory.
Microsoft Entra Connect gets the Users and prepares them to synchronize into Microsoft Entra ID.
AD users are provisioned into Microsoft Entra ID.
CoreOne then matches the UPN in CoreOne Suite identities with Microsoft Entra ID users and creates an Object ID link.
Prerequisite
To use the Exchange Online System Connector, the server where the System Connector is installed needs the ExchangeOnlineManagement
Powershell-Module. Run the follwing command in Windows Powershell:
Code Block | ||
---|---|---|
| ||
Install-Module ExchangeOnlineManagement |
For more information, checkout the follwing documentation: https://learn.microsoft.com/en-us/powershell/exchange/exchange-online-powershell-v2?view=exchange-ps&source=recommendations#install-the-exchange-online-powershell-module.
System Identity Types
The following system identity types are supported:
...
Parameter | Mandatory | Example | Description | |||||
---|---|---|---|---|---|---|---|---|
Application Identifier | ✅ | 4deeecf9-c063-4763-94c6-3db66e4ae679 | The unique identifier of the application generated in the administration panel | |||||
Application SecretCertificate Subject | ✅ | 🔑 * * * * * * * * | The secret to the application generated in the administration panel | Connection URI | ✅ | The connection URI to the outlook powershell endpointMicrosoft Entra ID App Certificate | The self-signed certification is used to ensure client authentication with Microsoft Entra ID. This Certificate must be registered in the administration panel | |
Domain | ✅ | The Office 365 tenant | ||||||
Password | ✅ | 🔑 * * * * * * * * | The password of the user | |||||
Tenant Identifier | ✅ | 97b62607-cb86-48ba-9a28-e8e1e7c4c104 | The unique tenant identifier | |||||
Tenant Name | ✅ | Contoso - Test Tenant | The Tenant name | |||||
Username (Marked for deprecation) | ✅ ❌ | The username to connect to | ||||||
Password (Marked for deprecation) | ❌ | 🔑 * * * * * * * * | The password of the user | |||||
Connection URI (Marked for deprecation) | ❌ | The connection URI to the outlook powershell endpoint | ||||||
Application Secret (Marked for deprecation) | ❌ | 🔑 * * * * * * * * | The secret to the application generated in the administration panel |
Note |
---|
From version 9.0 onwards, the parameters Username, Password, Connection URI, and Application Secret are marked as deprecated. |