Exactly how I like to learn. Watch you do the entire process with errors that need to be fixed and everything. I wish car repairs videos were like this instead of skipping all over the place. Tell you take off some bolts and skip the part where they had the same trouble I had making me think I'm doing something wrong.
Great video! This sems good when you want to keep costs down and just innovate with the tools that you have. Is the group sync only cloud based groups? Have you thought of hybrid scenarios using Azure's new cloud sync? I'm seeing environments are hybrid still even for some small companies.
What is your approach to employee onboarding in a hybrid deployment environment where both on-premises Active Directory and cloud-based Entra ID are in use?
We are also hybrid, but we have automated it. We start with the data in Lists (which I like better than Forms, but they each have their strong suits). One thing we have learned to do is to generate the values needed for AD from the form and then on a given schedule, we have a power shell script run that pulls the data and generates the accounts. It only pulls data that doesn’t have a created flag set. We have also used Powershell to assign some of the licenses and post the flag back to the list when it has created the user. This usually runs between midnight and two am. Then I have power automate run starting around 4am which pulls values for those users with the modify date being that day and created flag set. This completes many of the rest of the steps and, as in this tutorial, we set a delay and then send their welcome email on their first day. Our company also has a 90-day introductory period for all new employees. Our script delays until that day comes along. We send a message to HR to see if they have pass their 90-day review. If the answer is yes, it triggers several other steps that completes their final onboarding. (HR has their own triggers for 90-day reviews inside our HR system which doesn’t have an API we can access.) Just saying that even though we are hybrid, there are definitely things you can do to integrate and automate, even if you don’t have premium licenses.
doing offboarding in a few weeks but have a template for that already :) could make one on reactivating a user too. You would pick that up from the actions in the offboard.
I get it in principle but who is supposed to fill out the form? The new employee or someone from HR or their line manager etc? Problem you will get with people who can enter anything into the form is that it will break the flow.
these articles cover this, its supported: learn.microsoft.com/en-us/entra/identity/users/licensing-groups-assign learn.microsoft.com/en-us/entra/identity/users/licensing-admin-center
![Hands-On Power BI Tutorial 📊Beginner to Pro [Full Course] ⚡](/img/n.gif)
Exactly how I like to learn. Watch you do the entire process with errors that need to be fixed and everything. I wish car repairs videos were like this instead of skipping all over the place. Tell you take off some bolts and skip the part where they had the same trouble I had making me think I'm doing something wrong.
Looks like he's using Whimsical for the diagram-great tool for flowcharts and wireframes!
This is just what I need Im inn the process of improving our onboarding and offboarding. This is gold. Thank you
Great video! This sems good when you want to keep costs down and just innovate with the tools that you have. Is the group sync only cloud based groups? Have you thought of hybrid scenarios using Azure's new cloud sync? I'm seeing environments are hybrid still even for some small companies.
Thank you for this video, how can I fetch the additional properties you set to add it to an email? Thank you.
What is your approach to employee onboarding in a hybrid deployment environment where both on-premises Active Directory and cloud-based Entra ID are in use?
Nice Video! What did you use to create the Diagram/Flow?
I'm curious as well
mee too
FYI, the diagram tool used is called Whimsical
@@arrownm thanks!🙏
whimsical.com/
This gets hard when you are still hybrid 😢
Same here: still need to create a local user first and then sync with entra id.
We are also hybrid, but we have automated it. We start with the data in Lists (which I like better than Forms, but they each have their strong suits). One thing we have learned to do is to generate the values needed for AD from the form and then on a given schedule, we have a power shell script run that pulls the data and generates the accounts. It only pulls data that doesn’t have a created flag set. We have also used Powershell to assign some of the licenses and post the flag back to the list when it has created the user. This usually runs between midnight and two am. Then I have power automate run starting around 4am which pulls values for those users with the modify date being that day and created flag set. This completes many of the rest of the steps and, as in this tutorial, we set a delay and then send their welcome email on their first day.
Our company also has a 90-day introductory period for all new employees. Our script delays until that day comes along. We send a message to HR to see if they have pass their 90-day review. If the answer is yes, it triggers several other steps that completes their final onboarding. (HR has their own triggers for 90-day reviews inside our HR system which doesn’t have an API we can access.)
Just saying that even though we are hybrid, there are definitely things you can do to integrate and automate, even if you don’t have premium licenses.
Do you have something for
1- offboarding
2- reactivating existing user
doing offboarding in a few weeks but have a template for that already :) could make one on reactivating a user too. You would pick that up from the actions in the offboard.
Great stuff, thanks
Can you add approval flow in it ?
Hi, what tool are you using to build the diagram? thanks.
whimsical.com/
How would you set a condition if no value was entered into the "mirror access of user field"
I get it in principle but who is supposed to fill out the form? The new employee or someone from HR or their line manager etc?
Problem you will get with people who can enter anything into the form is that it will break the flow.
Normally is HR
Thanks for sharing! I'm sticking with Azure Logic Apps instead of power automate.
On a similar note, do you do anything for guest onboarding?
May i know which software you are using for this type of flowchart ?
It's called whimsical.
@@0xac829 thank you
this is not applicable any more as you cannot now add license on a group.. any advice?
these articles cover this, its supported: learn.microsoft.com/en-us/entra/identity/users/licensing-groups-assign
learn.microsoft.com/en-us/entra/identity/users/licensing-admin-center
Yes, you can added under Admin center instead of Entra.
Microsoft is so hard, I have to click on things and they are so confusing.