Integrating SailPoint with Azure Active Directory

Revised Date: 28 September 2023

Important
You must have a Cloud Access Management (CAM) or SailPoint Cloud Infrastructure Entitlement Management (CIEM) license to enable cloud governance features. For more information, refer to Group Management for Azure Cloud Objects. Contact your SailPoint Customer Success Manager to request access.

The SailPoint Azure Active Directory manages the users and groups in Azure Active Directory. Azure Active Directory is the directory for all cloud based organizational Microsoft Directory services including Microsoft Office 365.

The SailPoint Azure Active Directory connector:

• Can also be used to provision users into a federated domain in Azure Active Directory.

• Uses Retry-After value to retry API request. It uses exponential back-off if Retry-After value is not returned by API.

• Uses Microsoft Graph APIs to manage users, groups and licenses.

Azure is Microsoft’s cloud solution platform which provides plenty of cloud services such as IaaS, PaaS, or SaaS. Azure uses Azure Active Directory as its authentication source to provide access on different services to users. Azure has management container objects which are used to group resources and manage access to them.

Azure Active Directory connector provides support for access management of Azure Management Objects along with managing of the Azure Active Directory Management Objects.

Note
To view the latest features, enhancements, or fixes, refer to the SaaS Release Notes page.