Provisioning Azure users through the Graph Management Agent
Governance on the Azure Cloud-only users is still not well managed in the Azure Portal.
By using the Microsoft Azure Graph MA for MIM 2016 you can do all your house cleaning in the MIM Portal.
Once you have set up your MA, you need to do your provisioning. The following attributes are mandatory:
-
accountEnabled
-
displayName
-
mailNickname
-
userPrincipalName
-
id
Also, you need to set the password attribute as a create-only attribute. Clear text will do it.
The id attribute is a Guid. I use the csObjectId
The same Guid is also used for setting the dn, which has to be formatted like this:
cn=%csObjectId%,OBJECT=user
Thanks to Paul Green for doing som investigation
By using the Microsoft Azure Graph MA for MIM 2016 you can do all your house cleaning in the MIM Portal.
accountEnabled
displayName
mailNickname
userPrincipalName
id
Kommentarer
Send en kommentar