Sign up to save your podcasts
Or
Share Entra Chat ποΈ β A master class with Entraβs Identity Provisioning Wizard!
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Entra Chat ποΈ β A master class with Entraβs Identity Provisioning Wizard!
In this episode, I sit down with Chetan Desai, a Principal Product Manager on the Microsoft Identity Governance team. We dive deep into a side of Entra that many admins never see: the critical "first mile problem" of getting identities into your system in the first place.
We talk about the evolution from on-prem scripts and MIM to specific connectors for Workday and SuccessFactors and then to the new powerful, generic API-driven approach that can handle any HR system and the architectural decisions behind it. Chetan also gives us a masterclass on how the provisioning engine differs from the Graph API and provides advice for anyone looking to migrate from a legacy Identity Governance and Administration (IGA) solution.
Subscribe with your favorite podcast player or watch on YouTube π
About Chetan Desai
Chetan Desai is a Principal Product Manager at Microsoft on the Entra team. For the past seven years, he has been a core part of the Entra Identity Governance and Provisioning team. Before his time at Microsoft, Chetan spent 17 years in consulting within the identity and access management domain , bringing a wealth of real-world deployment and integration experience to his product management role.
π Related Links
* Application and HR provisioning documentation
* Provisioning with SCIM
* API-driven inbound provisioning concepts
π Chapters
00:34 The "First Mile Problem" in Identity
04:51 From AD Sync to HR-Driven Provisioning
09:52 The Entra Provisioning Service Architecture
16:17 Hybrid vs. Cloud-Only Identity Flows
19:17 Beyond Workday: The Need for a Generic Connector
27:43 The Great Debate: CSV vs. SQL vs. API
35:34 Provisioning API vs. Graph API: What's the Difference?
43:24 The Latest Evolution: Custom Security Attributes
49:26 Advice for Migrating to Modern IGA
Podcast Apps
ποΈ Entra.Chat - https://entra.chat
π§ Apple Podcast β https://entra.chat/apple
πΊ YouTube β https://entra.chat/youtube
πΊ Spotify β https://entra.chat/spotify
π§ Overcast β https://entra.chat/overcast
π§ Pocketcast β https://entra.chat/pocketcast
π§ Others β https://entra.chat/rss
Merill's socials
πΊ YouTube β youtube.com/@merillx
π LinkedIn β linkedin.com/in/merill
π€ Twitter β twitter.com/merill
πΊ TikTok β tiktok.com/@merillf
π¦ Bluesky β bsky.app/profile/merill.net
π Mastodon β infosec.exchange/@merill
𧡠Threads β threads.net/@merillf
π€ GitHub β github.com/merill
Get full access to Entra.News - Your weekly dose of Microsoft Entra at entra.news/subscribe
View all episodes
By Merill Fernando
5
44 ratings
In this episode, I sit down with Chetan Desai, a Principal Product Manager on the Microsoft Identity Governance team. We dive deep into a side of Entra that many admins never see: the critical "first mile problem" of getting identities into your system in the first place.
We talk about the evolution from on-prem scripts and MIM to specific connectors for Workday and SuccessFactors and then to the new powerful, generic API-driven approach that can handle any HR system and the architectural decisions behind it. Chetan also gives us a masterclass on how the provisioning engine differs from the Graph API and provides advice for anyone looking to migrate from a legacy Identity Governance and Administration (IGA) solution.
Subscribe with your favorite podcast player or watch on YouTube π
About Chetan Desai
Chetan Desai is a Principal Product Manager at Microsoft on the Entra team. For the past seven years, he has been a core part of the Entra Identity Governance and Provisioning team. Before his time at Microsoft, Chetan spent 17 years in consulting within the identity and access management domain , bringing a wealth of real-world deployment and integration experience to his product management role.
π Related Links
* Application and HR provisioning documentation
* Provisioning with SCIM
* API-driven inbound provisioning concepts
π Chapters
00:34 The "First Mile Problem" in Identity
04:51 From AD Sync to HR-Driven Provisioning
09:52 The Entra Provisioning Service Architecture
16:17 Hybrid vs. Cloud-Only Identity Flows
19:17 Beyond Workday: The Need for a Generic Connector
27:43 The Great Debate: CSV vs. SQL vs. API
35:34 Provisioning API vs. Graph API: What's the Difference?
43:24 The Latest Evolution: Custom Security Attributes
49:26 Advice for Migrating to Modern IGA
Podcast Apps
ποΈ Entra.Chat - https://entra.chat
π§ Apple Podcast β https://entra.chat/apple
πΊ YouTube β https://entra.chat/youtube
πΊ Spotify β https://entra.chat/spotify
π§ Overcast β https://entra.chat/overcast
π§ Pocketcast β https://entra.chat/pocketcast
π§ Others β https://entra.chat/rss
Merill's socials
πΊ YouTube β youtube.com/@merillx
π LinkedIn β linkedin.com/in/merill
π€ Twitter β twitter.com/merill
πΊ TikTok β tiktok.com/@merillf
π¦ Bluesky β bsky.app/profile/merill.net
π Mastodon β infosec.exchange/@merill
𧡠Threads β threads.net/@merillf
π€ GitHub β github.com/merill
Get full access to Entra.News - Your weekly dose of Microsoft Entra at entra.news/subscribe
More shows like Entra.Chat
View all
Security Now (Audio)
1,988 Listeners
Windows Weekly (Audio)
878 Listeners
Risky Business
364 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
640 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
371 Listeners
CyberWire Daily
1,018 Listeners
Smashing Security
318 Listeners
Darknet Diaries
7,949 Listeners
Cybersecurity Today
174 Listeners
CISO Series Podcast
190 Listeners
Hacking Humans
316 Listeners
Defense in Depth
77 Listeners
Waveform: The MKBHD Podcast
5,923 Listeners
The Practical 365 Podcast
8 Listeners
Risky Bulletin
43 Listeners