Integrating Entra ID & Azure Cloud with the Delinea Platform (ITP/PCCE)
At the end of 2023, Microsoft completed the change of their product name from Microsoft Azure Active Directory (Azure AD or ADD) to Microsoft Entra ID (Entra or Entra ID).
Integrating Entra ID with the Delinea Platform enables Identity Threat Protection (ITP) and Privilege Control for Cloud Entitlements (PCCE) so you can discover identities, groups, assets, and access information related to your Entra ID account.
Information such as users, groups, and roles are synchronized during the integration and then updated regularly.
This document describes how to integrate Entra ID and Azure with the Delinea Platform.
Identity Threat Protection (ITP) integration covers:
Entra ID
-
Users
-
Groups
-
Roles and admins
-
Applications, Application Access, and Azure Managed Identities
-
App Registrations
-
Sign in and Audit Log activities
-
SharePoint Sites
-
Office 365 Audit Log Activities
Privilege Control for Cloud Entitlements (PCCE) integration covers:
Azure Cloud and Entra ID
-
Subscriptions, Resource Groups, and Resources
-
Roles and privileges
-
Management log Activities
-
Users
-
Groups
-
Roles and admins
-
Applications, Application Access, and Azure Managed Identities
-
App Registrations
-
Sign in and Audit Log activities
-
SharePoint Sites
-
Office 365 Audit Log Activities
The platform supports read-only or read/write modes of operation on Entra ID:
-
Read-only: Data is available in a read format only without editing permission.
-
Read/Write-operations: When enabling read/write operations, the platform is authorized to perform actions on your data, such as disabling, suspending, editing, or removing users from a group. For this mode, the platform requires several write-enabling OAuth scopes.
