Client credential authentication for Azure
Active Directory | Using a service account for the Cloud Identity Engine
app is strongly recommended, as this is a more secure method for
directory access and does not require the account to be associated
with a specific user. When you grant just two read-only permissions
for the Cloud Identity Engine to your Azure AD, the Client Credential
Flow option for Azure AD in the Cloud Identity Engine allows you
to configure a service account for your Azure AD in the Cloud Identity
Engine app. |
Changes for directory attributes | The June 2022 release for the Cloud Identity Engine
includes the following directory attribute changes: - For
on-premises Active Directory, the Cloud Identity Engine now supports
the Admin Count (adminCount) attribute
for Users, Groups, and Computers.
- For Google Directory, the Location attribute is now locations.area.
Refer
to the Cloud Identity Engine documentation for more information
on about the attributes that the Cloud
Identity Engine collects. |
