Overview

The O365 Connector Splice integrates with the IDHub Connector Application to provision/modify/revoke 2 main resources, Accounts and Entitlements to Microsoft’s Office 365 applications.

Microsoft provides the Microsoft Graph REST APIs to access data on Microsoft Office 365 core services .

Account

An Office 365 Account in IDHub maps to a User in Azure AD. At a minimum, the following properties must be specified in order to create a User in Azure AD.

Property

Description

accountEnabled

True if the account is enabled; otherwise, false.

displayName

The name to display in the address book for the user.

mailNickname

The mail alias for the user.

passwordProfile

The password profile for the user.

userPrincipalName

Email address of the user

Entitlement

An Entitlement in IDHub maps to Groups and Licences in Azure AD. A Group in Azure AD can be a Microsoft 365 Group or a Security Group. A Team in Teams also maps to a Group in Azure AD. A license provides a user access to Office 365 service plans such as Word, Excel, Outlook, Teams etc. The type of license that a user can be assigned completely depends on the type of product subscription that the organization has. A license can only be assigned to or removed from a user. Licences and Subscriptions cannot be purchased or updated via the O365 connector.

The following table shows the properties of the group resource to specify when you create a group.

Property

Description

displayName

The name to display in the address book for the group. Maximum length: 256 characters. Required.

description

A description for the group. Max. length: 1024 characters. Optional.

mailEnabled

Set to true for mail-enabled groups. Required.

mailNickname

The mail alias for the group. Max. length: 64 characters. These characters cannot be used in the mailNickName: @()\[]";:.<>,SPACE. Required.

securityEnabled

Set to true for security-enabled groups, including Microsoft 365 groups. Required.

owners

This property represents the owners for the group at creation time. Optional.

members

This property represents the members for the group at creation time. Optional.

visibility

Specifies the visibility of a Microsoft 365 group. Possible values are: PrivatePublicHiddenMembership, or empty (which is interpreted as Public).

Schema and Implementation of Account and Entitlement

Resource

Operations Supported

Schema

Account

  • Create

  • Read

  • Update

  • Delete

  • List

  • Assign/revoke entitlements via Patch operation only

O365 Account

Entitlement

  • License

  • Group

  • Read

  • List

O365 Entitlement

The supported operations will be implemented as per IDHub Splice / Connector - Implementation Guide

References

https://docs.microsoft.com/en-us/graph/overview?view=graph-rest-1.0