In EmpowerID, Provisioning policies, also known as "Resource Entitlements" or "RETS," are policies that can be created to automate the provisioning, moving, disabling and de-provisioning of resources to users based on certain qualifying criteria, such as belonging to a specific group, Management Role, Business Role and Location, or Query-Based Collection. Once a policy is created and enabled, EmpowerID continuously evaluates the policy to determine who should and should not have the resource specified by the policy.
|
This topic demonstrates how to create a RET policy that automates the provisioning and de-provisioning of Office 365 accounts and is divided into the following activities:
Assigning the provisioning policy to a specific target.
In this topic we assign the provisioning policy to the Self-Service User Limited Access Management Role. In this way, anyone who is a member of the Management Role will receive an Office 365 account.
Management Roles are just one of the possible targets for a provisioning policy. These policies can also be targeted against any number or combination of groups, Business Roles and Locations, Query-Based collections, as well as individual people. Although we target the policy against a Management Role in this topic, you can apply the procedures against any target(s). |
Next, assign the policy you just created to one or more targets as demonstrated below.
If you selected Approve All Provisions, you must manually approve each item in the Resource Entitlement Inbox for this policy before EmpowerID will provision the user accounts. This is demonstrated in the next section.
Click the Pending Approval tab to see a list of all RETs requiring approval.
|
|