Overview
This add-on loads comprehensive and detailed accounts, groups and roles information from Microsoft Entra ID environments.
It includes a connector with an extraction Powershell script that extracts data from Entra ID in one LDIF file.
A silo is also provided with discovery and collector files to import data from the LDIF file to the Identity Ledger.
The following information will be loaded:
- Accounts, Groups and Roles,
- Selected standard attributes,
- Selected user-defined attributes if required.
Information is extracted from Entra ID using provided PowerShell scripts, that can be run either remotely or through the OpenICF connector.
Loaded information will feed accounts and groups tables in iGRC.
It is the foundation for all Microsoft Cloud related iGRC Add-ons (eg. Office 365) and Analytic Apps and can also be used to build your own reports and analytics.
Once the add-on installed, instructions for extracting data from Entra ID environments are provided in the documentation available in /library/contribs/bw_ad_azure.
Revision History
version 1.7
warning: if a history has been collected with previous versions of this add-on, the database must be migrated; upgrading the facet is not enough. Please contact the support in that case.
Changed data collection configuration to use:
- ID’s instead of display names for groups
- ID’s instead of mail nicknames for accounts
Add the option to use a PSCredential object as credential parameter.
version 1.6
Use MSAL instead of ADAL authentication library
version 1.5
IAS certification
version 1.4
Initial version
| File | Version | Minimum Product Version | Download |
|---|---|---|---|
| bw_ad_azure_1.7.20941.facet | 1.7.20941 | 2017 R2 | Login to Download |
| bw_ad_azure_1.6.11743.facet | 1.6.11743 | 2017 R2 | Login to Download |
| bw_ad_azure_1.6.10978.facet | 1.6.10978 | 2017 R2 | Login to Download |
| bw_ad_azure_1.4.10109.facet | 1.4.10109 | 2017 R2 | Login to Download |
| bw_ad_azure_1.0.7918.facet | 1.0 | 2017 R2 | Login to Download |
