Saviynt Forums

Shreya47 · ‎09/18/2023

Hi Team,

We in the process of integrating O365 to saviynt and we following the document given by Saviynt(https://docs.saviyntcloud.com/bundle/AzureConf-v23x/page/Content/Enabling-an-Azure-AD-Application-to...).

We have a concern, in the below script mentioned in this document, why the integration require global administrator access.

Connect-msolservice #Enter Admin credentials of the Azure portal$webApp = Get-MsolServicePrincipal –AppPrincipalId “<ClientId of Azure AD Application>”Add-MsolRoleMember -RoleName "Global Administrator" -RoleMemberType ServicePrincipal -RoleMemberObjectId $webApp.ObjectId

Darshanjain · ‎09/21/2023

Hi @Shreya47

The below changes has to be done in Azure connector , However global admin rights shouldnot be given, we have to assign a least privilege role, let me check internally and get this updated correctly.

Thanks

Darshan

Shreya47 · ‎11/21/2023

HI Team,
We got the information from Saviynt that o365 ootb connector falls under the DAG license category and cannot be used as Saviynt is currently not supporting the connector and also not providing the DAG license, however we wanted have a confirmation on below items:

What are other Saviynt clients utilizing for SharePoint onboarding?
Since DAG isn't offered right now, what other workarounds are there to do SharePoint governance? (remember our use cases are to fetch everything at granular level)

Also, please let us know the ETA on when they can update their guide reflecting DAG license dependency for using this connector.

Saviynt Forums

O365 Connector integration documentation