Jump to content

Update Microsoft O365 integration to MS Id Platform v2


Recommended Posts

We have the premium iBridge package which includes the Microsoft Office 365 integration which we'd really like to use in our processes.

However, the current integration appears to use Azure Active Directory v1.0 endpoints, which means the integration requests EVERY permission available and not only the permission required for the available operations (ie. calendar, contact and mail).

This is preventing us from using the integration as our SOC team is not okay with granting permissions which are not required.

We therefore are requesting that the integration is updated to use the Microsoft Identity Platform (v2) as in the below note:

https://learn.microsoft.com/en-us/azure/active-directory/azuread-dev/azure-ad-endpoint-comparison#incremental-and-dynamic-consent

  • Thanks 1
Link to comment
Share on other sites

We are currently in the process of updating the Microsoft integrations to only require the specific scopes each integration needs to run successfully. Existing examples of this can be seen within Microsoft Teams and Entra ID.

Please let me know if you have any further questions about this.

  • Like 3
Link to comment
Share on other sites

  • 1 month later...

@Gareth Cantrell This work is still ongoing, but we have deprecated the old Azure User & Group operations (that required the full Microsoft admin permissions) and replaced them with operations that require much fewer permissions to operate. Details can be found on the Hornbill wiki.

As and when more operations are replaced to use the new endpoints and fewer scopes, they will be published on the Announcements forum when released.

Thanks,

Steve 

Link to comment
Share on other sites

  • 6 months later...

Just checking in to see if there are any updates to this; the Microsoft key type is still requesting god-mode using the old v1 API, and we'd really like to start getting some integrations and automations working without resorting to custom code via the iBridge HTTP (experimental) integration.

  • Like 1
Link to comment
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...