Configure Provisioning for Microsoft 365 with Zoho Directory
User provisioning with Microsoft 365 enables you to provision and deprovision users in Microsoft 365 from Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of information.
Prerequisites
In Zoho Directory
- Roles that can perform this action:
- Organization Owner
- Organization Admin
- Permission required:
- View apps
- Assign apps
- Import apps
In Microsoft 365
- Roles that can perform this action:
- Owner or App Admin role
- A custom domain must be added and verified. To add and verify your domain, follow the steps in Add your custom domain name in Microsoft Entra ID.
- An application must be registered in Microsoft Admin Center and configured with the required authentication settings. To complete this setup, follow the steps under Configure SAML in Microsoft 365.
In Zoho Directory:
1. Sign in to Zoho Directory, then click Admin Panel in the left menu.
2. Go to Applications, then click Add Application.
3. Use the search bar to find and add Microsoft 365.
4. Name your app, then enter the Domain Name and Tenant ID.
Enter your verified domain name in the Domain Name field. Go to the Microsoft Entra admin center, under Entra Id, then click Overview. Copy the Tenant ID displayed in the Overview.
5. Click Add.
6. Click Microsoft 365, then click Configure under the Provisioning tab.
7. In the Provisioning section, fill in the following fields:
- OAuth Consumer Key: Paste the Application ID that you copied from Microsoft 365.
- OAuth Consumer Secret: Paste the Client Value that you copied from Microsoft 365.
- Authorization Endpoint: Enter the authorization endpoint in the format: https://login.microsoftonline.com/<tenant ID>/oauth2/v2.0/authorize
- Token Endpoint: Enter the token endpoint in the format: https://login.microsoftonline.com/<tenant ID>/oauth2/v2.0/token
8. Click Authorize. A new tab will open, requesting your consent to access information in Microsoft 365.
9. Click Allow. You will be redirected to the FIELD MAPPING section of Zoho Directory.
10. Select the fields that have to be synced with Microsoft 365, and map a relevant Zoho Directory field with them. If you'd like to have a constant value set in Microsoft 365 for any field, click Edit next to the field, enter the value in the Hardcoded Value field, then click OK.
By default, all Microsoft 365 fields will be mapped to a relevant Zoho Directory field. To change this mapping, you should have the Standard or Professional plans in Zoho Directory.
11. Click Save and Next.
12. Choose which of the changes made in Zoho Directory have to be synced with Microsoft 365:
- Create users: Assigning a user to Microsoft 365 in Zoho Directory automatically creates a new user account in Microsoft 365.
- Update User profile: If a user account already exists in Microsoft 365 for a user, any changes made to the mapped fields in user's profile in Zoho Directory will be synced with Microsoft 365.
- Delete Users: When a user is unassigned from the Microsoft 365 in Zoho Directory, the existing user's account will be deleted in Microsoft 365.
- Activate and deactivate Users: Activating and deactivating users in Zoho Directory will activate or deactivate them in Microsoft 365. Additionally, users who have an account in Microsoft 365 will be activated when they are assigned to the app in Zoho Directory.
13. Click Save.
14. If you wish to import users from Microsoft 365 to Zoho Directory, click Import. We suggest that you import users during initial setup or when activating the app later. A list of users that can be imported will be displayed based on the following filters:
- New Users: Users in Microsoft 365 who do not have an account in Zoho Directory. Users you select here will be added to Zoho Directory and, Microsoft 365 will be assigned to them.
- Update Users: Users in Microsoft 365 who already exist in Zoho Directory will have their profile attributes updated based on the source profile you choose. The selected users existing details will be overwritten with the attributes from the chosen source.
- Users to Activate: Microsoft 365 users who are inactive in Zoho Directory but active in Microsoft 365 will be listed here. These users will be activated in Zoho Directory and unassigned to Microsoft 365.
- Users to Deactivate: Microsoft 365 users who are active in Zoho Directory but inactive in Microsoft 365 will be listed here. These users will be disabled from Microsoft 365 during import.
15. Click Confirm Assignment.
16. Click Done.
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho Writer?
Create. Review. Publish.
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Configure provisioning for BlogIn with Zoho Directory
User provisioning with BlogIn enables you to provision and deprovision users in BlogIn from Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of truth. Prerequisites A user account in BlogIn with Administrator role. ...Configure provisioning for PlanMyLeave with Zoho Directory
User provisioning with PlanMyLeave enables you to provision and deprovision users in PlanMyLeave from Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of truth. Prerequisites A user account in PlanMyLeave with ...Configure provisioning for AWS Identity Center with Zoho Directory
User provisioning with AWS Identity Center enables you to provision and deprovision users in AWS Identity Center from Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of truth. Prerequisites An Application admin role ...Configure provisioning for Google Workspace with Zoho Directory
User provisioning with Google Workspace enables you to provision and deprovision users in Google Workspace from the Zoho Directory Admin Panel, allowing you to use Zoho Directory as a single source of truth. To get the most out of this integration, ...Provisioning - Overview
User management is a key function for every business. Provisioning users to your applications, syncing user accounts, and assigning polices are essential. As an organization expands, it becomes tedious for the org owner to do certain operations as ...
New to Zoho LandingPage?
Zoho LandingPage Resources