Bug 48641 – Discover and connect existing Office365 users with ucs users

Bug 48641 - Discover and connect existing Office365 users with ucs users


Summary:	Discover and connect existing Office365 users with ucs users

Status:	NEW

Product:	UCS
Classification:	Unclassified
Component:	Office 365
Version:	UCS 4.3
Hardware:	amd64 Linux

Importance:	P5 normal (vote)
Target Milestone:	---
Assigned To:	Mail maintainers
QA Contact:	Mail maintainers

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2019-02-11 10:09 CET by Erik Damrose
Modified:	2021-02-24 09:48 CET (History)
CC List:	4 users (show)

See Also:
What kind of report is it?:	Feature Request
What type of bug is this?:	4: Minor Usability: Impairs usability in secondary scenarios
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	5: Blocking further progress on the daily work
User Pain:
Enterprise Customer affected?:	Yes
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):	SAML
Max CVSS v3 score:

Attachments
script to connect existing UCS users to existing Azure AD users (5.51 KB, text/x-python) 2019-10-25 16:36 CEST, Erik Damrose	Details
script to connect existing UCS users to existing Azure AD users v2 (6.43 KB, text/x-python) 2021-02-22 19:06 CET, Erik Damrose	Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Erik Damrose

2019-02-11 10:09:34 CET

+++ This bug was initially created as a clone of Bug #44749 +++

Almost all customers that use the Office365 connector have asked for the possibility to connect existing Office365 users to existing ucs users.

We described how to do the process manually here: https://help.univention.com/t/ucs-office365-issue/7209

Comment 1 Erik Damrose

2019-10-25 16:36:00 CEST

Created attachment 10219 [details]
script to connect existing UCS users to existing Azure AD users

Comment 3 Erik Damrose

2021-02-22 19:06:15 CET

Created attachment 10628 [details]
script to connect existing UCS users to existing Azure AD users v2

New version of the script, support for multiple ad connections added.

Example call: There is a testuser uid=test03, and an Azure
user aaduser_03@somedomain.onmicrosoft.com.
test03 should be connected, and the ad connection in UCS is the default  'defaultADConnection'.
The user has no mailPrimaryAddress set in UCS, and is not activated for O365. We have to configure a mailadress, and choose to set the uid as the localpart, and use a maildomain that is configured in UCS, in this case 'mydomain.intranet'

./o365_connect_azure_to_ucs_user
-p aaduser_03@univentiontestgmbh.onmicrosoft.com
-u test03
--set_mail --maildomain mydomain.intranet
--mail_localpart_from_uid -a -c defaultADConnection

This is the default run, to really modify the user add --modify to the call.
Disclaimer: Test this with testusers first, and double check every connected user. The modification will set the immutableID in the Azure AD, the script can only be called once for every user. To reset the immutableID in Azure, powershell on Windows can be used.