Cloud Identity Management for Microsoft 365
We specialize in user-oriented and cloud-based identity and access management (IAM) on the basis of Microsoft Teams.
Microsoft 365 (also M365) enables identity management for and by users.
The Azure Active Directory cloud directory provides the benefits of the cloud within the Microsoft environment.
By connecting FirstAttribute’s my-IAM platform with Microsoft Teams, you provide your users with a simple and streamlined identity management experience.
What is IAM in Teams?
We offer you an accessible identity & access management solution embedded in Microsoft Teams.
Cloud management of identities is one of the most complex and important tasks of the IT department. This includes the administration of
- project teams or
- departments in Azure AD.
User information, permissions, passwords – important data that constantly needs to be updated by the IT department. Information is passed on from employees to the IT department, mostly through time-consuming processes. At the same time, well maintained data is important for the assignment of authorizations.
A user-friendly self-service solution makes life easier for everyone involved. Employees update certain data themselves without help from the IT department. Ideally, this solution is integrated into an application that is already in daily use, such as Microsoft Teams.
Microsoft Teams offers its users the possibility to assign themselves to different teams. It is intended to simplify collaboration, as well as focus the work environment on the most important topics. For security reasons, many administrative tasks of Teams can only be handled by an admin. There is however a risk of long, time-consuming processes without a well thought-out solution.
Why IAM in MS Teams?
Teams management by users
Teams in Microsoft Teams live through their members. They know best:
- which teams they must be a member of,
- which tabs and functions the team needs,
- who is the manager and who is a member.
However, it is important to note: If every user can create a team, sooner or later the risks are
- redundant teams or
- unused teams,
- teams with different structures and
- different members, and
- memberships with too much or not enough permissions.
This is why many companies decide that the administration of Microsoft Teams remains in the hands of the IT department.
However, centralizing the administration will sooner or later lead to new processes and more work within the IT department.
Ideally, employees with a specific role (e.g. manager, department head) have the authorization to create templates. Teams templates are project teams predefined by the IT department. Designated users fill out a form that meets IT’s security requirements. Permissions are set in the background by automated processes of the my-IAM platform. The purpose is to relieve IT without compromising the security of the company.
IAM systems with high user acceptance and easy integration
Originally, the identity provider was managed locally (on-premises) and offered as a software. Most companies used Microsoft Active Directory for this purpose. However, today’s trend is shifting towards Software as a Service (SaaS) in the cloud. The advantages of cloud-based SaaS solutions are manifold. With Azure AD, you continue to leverage the familiar and strong Microsoft environment, with the benefits of the cloud.
IAM administration mainly consists of maintaining data (e.g. groups, users) generated by the users. However, the maintenance of Azure AD remains with the IT department. With IAMaaS – Identity and Access Management as a Service, the management of user identities can be done by the users themselves. Some IAMaaS solutions, such as FirstAttribute’s my-IAM service, can also be integrated directly into Microsoft applications (e.g. Microsoft Teams).
IAM in Teams with my-IAM
Employee cloud self-service
Azure AD maintenance managed directly by users and in Microsoft Teams.
Employees of an organization are the ones who cause changes. For this reason, they know best which phone number is correct or if a last name has changed. This is why self-service solutions are used successfully in many companies.
However, the use of a self-service solution requires, among other things
- an external IAM application,
- connectors or
- the maintenance of additional databases.
FirstAttribute’s my-IAM service aims to address these challenges. It offers the benefits of cloud-based IAM solutions. Since Microsoft Teams has seen a strong uptake in the Microsoft environment, my-IAM is directly integrated into MS Teams as a registration card.
Teams management with TeamSpace
Employees take charge of managing their teams in Microsoft Teams. Team templates are predefined and tested. A standard team template restricts permissions, structure, or external members. In addition, team templates are available to a selected group of employees. The benenfit is that users can create a secure team with the appropriate policies in a matter of minutes.
Automate authorization management
New authorizations are needed all the time. Through ticket applications, employees ask for new permissions and share new data on a daily basis.
When access rights are changed, a third person is also involved: the manager.
The IT department can make the technical changes, but not without the manager’s approval.
Non-automated processes not only mean a lot of work for IT, but also waiting time for the user.