![]() ![]() ![]() Change users' User principal name and primary SMTP in office 365 match it to your on-premises user principal name for respective users. Also set the domain to internal relay via exchange.Ģ. Add the production domain in office 365, you just have to update the txt record, nothing more. Office 365 uses the ImmutableID attribute to uniquely identify users. For SSO between Google and Office 365 to work, each Office 365 user must have an ImmutableId, and the SAML Name ID attribute sent to Office 365 during SSO must be the same as the ImmutableId.Īn Office 365 user’s ImmutableID varies according to how the user is created.Hey are a quite few things which you need to consider here in order to achieve this, although it calls for a more detailed discussion, i will try to summarize best i can, the overall strategy would look somewhat like this:ġ. For these users, use the PowerShell Set-MsolUser command to set the ImmutableID in Office 365 to match the user’s UPN: If users were created in Office 365 Admin console, ImmutableID should be blank.If you set up Google to autoprovision users, you don’t have to configure ImmutableID, it is mapped by default to the user’s email address (the User Principle Name or UPN). Set-MsolUser -UserPrincipalName -ImmutableId can also use Set-MsolUser to bulk update all users. $exportUsers = Get-MsolUser -All | Select-Object UserprincipalName, ImmutableID | Export-Csv C:\csvfile For example, to retrieve ImmutableID for all users and export to a CSV file: Use PowerShell to retrieve the ImmutableID from Azure AD.If users were created via Azure Active Directory sync, ImmutableID is an encoded version of the Active Directory objectGUID.Refer to the PowerShell documentation for specific instructions. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |