IBM Security Verify

Hello,

Was wondering if someone has any information regarding the Azure Active Directory adapter for ISIM?


------------------------------
Magnus
------------------------------

Hi Magnus
I am not able to give a definite answer - but I think the IBM strategy is to use our cloud IGA product Cloud Identity Governance as the vehicle for cloud application provisioning. CIG will provide fine grained entitlement support and can work as a glorified adapter for both ISIM and IGI to provision cloud accounts.
This a new way of doing this that comes with a lot of simplification - i.e. you do not need to maintain an adapter infrastructure for the cloud applications (you will only need one CIG adapter on prem). Currently we do not have a lot of applications supported - but this should grow quickly...
I am pretty sure this will be covered on the Nordic UG meeting in Stockholm (invite will come here RSN) so if you are based in the Nordics this is definitely something to attend.
I do not know if the "old" on prem Azure/O365 adapter will be updated to use the Azure Graph API - but I will try to get an answer from our adapter development...

HTH

------------------------------
Franz Wolfhagen
IAM Technical Architect for Europe - Certified Consulting IT Specialist
IBM Security Expert Labs
------------------------------

Original Message:
Sent: Thu February 13, 2020 09:28 AM
From: Magnus
Subject: ISIM - Integration with Azure AD

Hello,

Was wondering if someone has any information regarding the Azure Active Directory adapter for ISIM?

According to this article below, Microsoft recommends developers to change from Azure Graph API to Microsoft Graph API.

Do IBM have in their roadmap to update the Azure Active Directory adapter partnr CRK17ML to support MS graph going forward? If not, has there been any assessment that the move from Azure graph API to MS Graph API is not needed for the functionality that is required for ISIM in order to govern Identities in Azure?

https://developer.microsoft.com/en-us/office/blogs/microsoft-graph-or-azure-ad-graph/

Thanks.

Best regards
Magnus

------------------------------
Magnus
------------------------------

First - sorry to getting the APIs mixed up....
The CIG people as confirmed to me they use the newer MS  Graph API - so that sounds promising.
I will be back when I hear from our adapter development...



------------------------------
Franz Wolfhagen
IAM Technical Architect for Europe - Certified Consulting IT Specialist
IBM Security Expert Labs
------------------------------

Original Message:
Sent: Fri February 14, 2020 02:32 AM
From: Franz Wolfhagen
Subject: ISIM - Integration with Azure AD

Hi Magnus
I am not able to give a definite answer - but I think the IBM strategy is to use our cloud IGA product Cloud Identity Governance as the vehicle for cloud application provisioning. CIG will provide fine grained entitlement support and can work as a glorified adapter for both ISIM and IGI to provision cloud accounts.
This a new way of doing this that comes with a lot of simplification - i.e. you do not need to maintain an adapter infrastructure for the cloud applications (you will only need one CIG adapter on prem). Currently we do not have a lot of applications supported - but this should grow quickly...
I am pretty sure this will be covered on the Nordic UG meeting in Stockholm (invite will come here RSN) so if you are based in the Nordics this is definitely something to attend.
I do not know if the "old" on prem Azure/O365 adapter will be updated to use the Azure Graph API - but I will try to get an answer from our adapter development...

HTH

------------------------------
Franz Wolfhagen
IAM Technical Architect for Europe - Certified Consulting IT Specialist
IBM Security Expert Labs

Original Message:
Sent: Thu February 13, 2020 09:28 AM
From: Magnus
Subject: ISIM - Integration with Azure AD

Hello,

Was wondering if someone has any information regarding the Azure Active Directory adapter for ISIM?

According to this article below, Microsoft recommends developers to change from Azure Graph API to Microsoft Graph API.

Do IBM have in their roadmap to update the Azure Active Directory adapter partnr CRK17ML to support MS graph going forward? If not, has there been any assessment that the move from Azure graph API to MS Graph API is not needed for the functionality that is required for ISIM in order to govern Identities in Azure?

https://developer.microsoft.com/en-us/office/blogs/microsoft-graph-or-azure-ad-graph/

Thanks.

Best regards
Magnus

------------------------------
Magnus
------------------------------

We just took the steps to integrate Azure with our Security Verify instance. The below link should help point you in the right direction for this!

https://www.ibm.com/docs/en/svgaa?topic=installing-obtaining-application-id-secret-key-azure-active-directory-adapter

(edit - Did not realize the age on this post, apologies.)

------------------------------
Jordan Boncz
------------------------------

Original Message:
Sent: Fri February 14, 2020 02:58 AM
From: Franz Wolfhagen
Subject: ISIM - Integration with Azure AD

First - sorry to getting the APIs mixed up....
The CIG people as confirmed to me they use the newer MS  Graph API - so that sounds promising.
I will be back when I hear from our adapter development...



------------------------------
Franz Wolfhagen
IAM Technical Architect for Europe - Certified Consulting IT Specialist
IBM Security Expert Labs

Original Message:
Sent: Fri February 14, 2020 02:32 AM
From: Franz Wolfhagen
Subject: ISIM - Integration with Azure AD

Hi Magnus
I am not able to give a definite answer - but I think the IBM strategy is to use our cloud IGA product Cloud Identity Governance as the vehicle for cloud application provisioning. CIG will provide fine grained entitlement support and can work as a glorified adapter for both ISIM and IGI to provision cloud accounts.
This a new way of doing this that comes with a lot of simplification - i.e. you do not need to maintain an adapter infrastructure for the cloud applications (you will only need one CIG adapter on prem). Currently we do not have a lot of applications supported - but this should grow quickly...
I am pretty sure this will be covered on the Nordic UG meeting in Stockholm (invite will come here RSN) so if you are based in the Nordics this is definitely something to attend.
I do not know if the "old" on prem Azure/O365 adapter will be updated to use the Azure Graph API - but I will try to get an answer from our adapter development...

HTH

------------------------------
Franz Wolfhagen
IAM Technical Architect for Europe - Certified Consulting IT Specialist
IBM Security Expert Labs

Original Message:
Sent: Thu February 13, 2020 09:28 AM
From: Magnus
Subject: ISIM - Integration with Azure AD

Hello,

Was wondering if someone has any information regarding the Azure Active Directory adapter for ISIM?

According to this article below, Microsoft recommends developers to change from Azure Graph API to Microsoft Graph API.

Do IBM have in their roadmap to update the Azure Active Directory adapter partnr CRK17ML to support MS graph going forward? If not, has there been any assessment that the move from Azure graph API to MS Graph API is not needed for the functionality that is required for ISIM in order to govern Identities in Azure?

https://developer.microsoft.com/en-us/office/blogs/microsoft-graph-or-azure-ad-graph/

Thanks.

Best regards
Magnus

------------------------------
Magnus
------------------------------