o365 Verify Users Guide is completely wrong(real guide below)
- Open PowerShell
- Use one of the following commands to connect to the AD Azure tenant. a. Office 365 Worldwide (+GCC) • Connect-MsolService -AzureEnvironment AzureCloud b. Office 365 Germany • Connect-MsolService -AzureEnvironment AzureGermanyCloud c. Azure China Cloud • Connect-MsolService -AzureEnvironment AzureChinaCloud
- Enter the Office 365 administrator credentials when prompted.
- (Optional) Enter the following command to review a list of existing service principals. • Get-MsolServicePrincipal
- Enter the following to create a new service principal. • $principal = New-MsolServicePrincipal -DisplayName 'SecurityGatewaySP' -ServicePrincipalNames @("SecurityGatewaySP") -Type Password -Value 'useapasswordofyourchoicehere' -StartDate (Get-Date) -EndDate (Get-Date).AddYears(1) o The service principal object will be created and stored in the $principal variable. o The service principal's password is valid for one year from its create date by default.
- The Directory Readers role must be assigned for the service principal to be able to read information from the Azure AD tenant. Enter the following command to do this. • Add-MsolRoleMember -RoleName "Directory Readers" - RoleMemberType ServicePrincipal -RoleMemberObjectId $principal.ObjectId
Follow the remaining steps in SecurityGateway:
Click SETUP/USERS -> Accounts -> User Verification Sources
Under ‘User Verification Sources’, Select ‘New’
Under the ‘Properties’, select ‘Type: Office 365’
Give a description
Enter Domain Name:. For example: example.com
Select the Cloud type which you have selected in Step-2. Here it is Global
1
vote
Nick Praechter
shared this idea
Hello,
We have checked all of our documentation and have not found incorrect information. If you can point us to the incorrect information we would be happy to update it.
Thanks,
Arron