CyberCNS features Azure AD Integration out-of-the-box. Simply enter your Azure AD credentials and get the AD statistics to help you analyze your network.
Note - The current version does not support the CSP version due to Microsoft approval processes. Once complete CSP users will be able to use it across all tenants under them. Right now each company has to be added individually.
Select Integration
In the case of Non-CSP, an office 365 user with global permissions has to be used.
In the case of CSP, a partner center user having global admin permissions should be used.
This screen will likely change as we add more integrations.
Navigate to Global Settings(⚙) > Integrations and choose Azure AD from the integrations listed here.
It will lead you to add credentials for your Azure AD Instance. Provide details as requested.
Enter Azure AD Credentials
Click on + to add Azure AD credentials.
Choose a name for the credentials and Save.
On clicking the Save option is clicked, you are redirected to sign in to your Microsoft account.
Once the login is successful, the Azure AD Credentials will be stored. It is possible to add multiple credentials. You need to log on with a user having a Global Administrator role.
Company Mapping
The next step is to map local companies in CyberCNS to Azure AD companies corresponding to the selected Azure AD credentials.
In New Company Mapping, choose the Azure AD Credential of your choice from the dropdown and click on +Add to map the company.
One of these two options could be selected
🔸 Import Companies from Azure AD:- To import multiple companies at a time.
🔹 Map Existing Company to a Azure AD company:- To map an existing company to the Azure AD company.
To import multiple companies from Azure AD, choose Import Companies from Azure AD, click on Next.
Multiple companies can be added in the user interface.
Now click on Finish to import all the selected Azure AD companies.
As shown in the below image, select the Existing company and Azure AD company by using a dropdown or with the search bar as per the requirement.
Once the company is selected click on ‘+' to select the company and click on Finish to map all the selected Azure AD companies.
There is an option to Delete the integration mapping using the Action column. Any company mapping can be deleted if needed.
When Azure AD credentials and Company Mapping are added, the two tabs Azure Active Directory and Microsoft Secure Score will be enabled on the Companies that have the mapping.
Azure Active Directory
Now on the Company Level, Navigate to Azure Active Directory to get the details of Active Directory User Data, Active Directory Role Assignments, Active Directory Groups, and Active Directory Audit Logs.
In Active Directory User Data will get the details of User Principal Name, Display Name, Given Name, Account Enabled, and Created Date Time.
In the Active Directory Groups, will get the details of Display Name, Mail, Group Types, Mail Enabled, Proxy Addresses, Resource Behavior Options, Security Enabled, Security Identifier, Visibility, and Created Date Time.
Microsoft Secure Score
Microsoft Secure Score is a numerical summary of your security posture based on system configurations, user behavior, and other security-related measurements; it is not an absolute measurement of how likely your system or data will be breached.
Prerequisite
Microsoft Office 365 Admin or Security Admin Privilege.
MS Secure Score tab, in which will get the Microsoft secure score, User Count, Enabled Services, Average Comparative Scores, and Score Breakdown.
In the depicted below image using search filter option () can search the Score Breakdown based on the requirement.