Hello,

We want to manage Acitve Directory and O365 accounts. We create an AD account for each user. On a hybrid mail environment. Some user's e-mail addresses are defined on exchange, and some user's e-mail addresses are defined on O365.

We can open a local exchange mail address with the active directory adapter. What should we do when opening an e-mail address on O365? How to synchronize AD account and 0365 immutable ID?

Using AD attributes results in local exchange mail. Using O365 adapter makes it cloud only. Using the remote address is not the same with what client expects. They are creating AD accounts and then syncing to Cloud with microsoft tools. We want to achieve the same result with one or both of these adapters.

Thanks in advance,

------------------------------
Selim BEKTAS
------------------------------

What component are you doing this in - Identity Manger (ISIM) or Governance  (IGI) ?
IIRC there are some remarks about the hybrid setup in the AD Adapter release notes - but you have to be very careful so that the system dos not move mailboxes unintentionally - especially if there is a directory synch running as well between the on-prem AD and Azure.   

My advice based on being burned by this before the AD Adapter was fully supporting the scenario is to take some time with the O365 administrators to understand how and when mailboxes should be created...

HTH

------------------------------
Franz Wolfhagen
WW IAM Consulting Leader - Certified Consulting IT Specialist
IBM Security Expert Labs
------------------------------

Original Message:
Sent: Thu October 20, 2022 06:44 AM
From: Selim BEKTAS
Subject: For IDM, Active Directory-Exchange mail and Office 365 mail hybrid management

Hello,

We want to manage Acitve Directory and O365 accounts. We create an AD account for each user. On a hybrid mail environment. Some user's e-mail addresses are defined on exchange, and some user's e-mail addresses are defined on O365.

We can open a local exchange mail address with the active directory adapter. What should we do when opening an e-mail address on O365? How to synchronize AD account and 0365 immutable ID?

Using AD attributes results in local exchange mail. Using O365 adapter makes it cloud only. Using the remote address is not the same with what client expects. They are creating AD accounts and then syncing to Cloud with microsoft tools. We want to achieve the same result with one or both of these adapters.

Thanks in advance,

------------------------------
Selim BEKTAS
------------------------------