Sign up to save your podcasts
Or
Share Entra Chat ๐๏ธ โ A master class with Entraโs Identity Provisioning Wizard!
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Entra Chat ๐๏ธ โ A master class with Entraโs Identity Provisioning Wizard!
In this episode, I sit down with Chetan Desai, a Principal Product Manager on the Microsoft Identity Governance team. We dive deep into a side of Entra that many admins never see: the critical "first mile problem" of getting identities into your system in the first place.
We talk about the evolution from on-prem scripts and MIM to specific connectors for Workday and SuccessFactors and then to the new powerful, generic API-driven approach that can handle any HR system and the architectural decisions behind it. Chetan also gives us a masterclass on how the provisioning engine differs from the Graph API and provides advice for anyone looking to migrate from a legacy Identity Governance and Administration (IGA) solution.
Subscribe with your favorite podcast player or watch on YouTube ๐
About Chetan Desai
Chetan Desai is a Principal Product Manager at Microsoft on the Entra team. For the past seven years, he has been a core part of the Entra Identity Governance and Provisioning team. Before his time at Microsoft, Chetan spent 17 years in consulting within the identity and access management domain , bringing a wealth of real-world deployment and integration experience to his product management role.
๐ Related Links
* Application and HR provisioning documentation
* Provisioning with SCIM
* API-driven inbound provisioning concepts
๐ Chapters
00:34 The "First Mile Problem" in Identity
04:51 From AD Sync to HR-Driven Provisioning
09:52 The Entra Provisioning Service Architecture
16:17 Hybrid vs. Cloud-Only Identity Flows
19:17 Beyond Workday: The Need for a Generic Connector
27:43 The Great Debate: CSV vs. SQL vs. API
35:34 Provisioning API vs. Graph API: What's the Difference?
43:24 The Latest Evolution: Custom Security Attributes
49:26 Advice for Migrating to Modern IGA
Podcast Apps
๐๏ธ Entra.Chat - https://entra.chat
๐ง Apple Podcast โ https://entra.chat/apple
๐บ YouTube โ https://entra.chat/youtube
๐บ Spotify โ https://entra.chat/spotify
๐ง Overcast โ https://entra.chat/overcast
๐ง Pocketcast โ https://entra.chat/pocketcast
๐ง Others โ https://entra.chat/rss
Merill's socials
๐บ YouTube โ youtube.com/@merillx
๐ LinkedIn โ linkedin.com/in/merill
๐ค Twitter โ twitter.com/merill
๐บ TikTok โ tiktok.com/@merillf
๐ฆ Bluesky โ bsky.app/profile/merill.net
๐ Mastodon โ infosec.exchange/@merill
๐งต Threads โ threads.net/@merillf
๐ค GitHub โ github.com/merill
Get full access to Entra.News - Your weekly dose of Microsoft Entra at entra.news/subscribe
View all episodes
By Merill Fernando
5
55 ratings
In this episode, I sit down with Chetan Desai, a Principal Product Manager on the Microsoft Identity Governance team. We dive deep into a side of Entra that many admins never see: the critical "first mile problem" of getting identities into your system in the first place.
We talk about the evolution from on-prem scripts and MIM to specific connectors for Workday and SuccessFactors and then to the new powerful, generic API-driven approach that can handle any HR system and the architectural decisions behind it. Chetan also gives us a masterclass on how the provisioning engine differs from the Graph API and provides advice for anyone looking to migrate from a legacy Identity Governance and Administration (IGA) solution.
Subscribe with your favorite podcast player or watch on YouTube ๐
About Chetan Desai
Chetan Desai is a Principal Product Manager at Microsoft on the Entra team. For the past seven years, he has been a core part of the Entra Identity Governance and Provisioning team. Before his time at Microsoft, Chetan spent 17 years in consulting within the identity and access management domain , bringing a wealth of real-world deployment and integration experience to his product management role.
๐ Related Links
* Application and HR provisioning documentation
* Provisioning with SCIM
* API-driven inbound provisioning concepts
๐ Chapters
00:34 The "First Mile Problem" in Identity
04:51 From AD Sync to HR-Driven Provisioning
09:52 The Entra Provisioning Service Architecture
16:17 Hybrid vs. Cloud-Only Identity Flows
19:17 Beyond Workday: The Need for a Generic Connector
27:43 The Great Debate: CSV vs. SQL vs. API
35:34 Provisioning API vs. Graph API: What's the Difference?
43:24 The Latest Evolution: Custom Security Attributes
49:26 Advice for Migrating to Modern IGA
Podcast Apps
๐๏ธ Entra.Chat - https://entra.chat
๐ง Apple Podcast โ https://entra.chat/apple
๐บ YouTube โ https://entra.chat/youtube
๐บ Spotify โ https://entra.chat/spotify
๐ง Overcast โ https://entra.chat/overcast
๐ง Pocketcast โ https://entra.chat/pocketcast
๐ง Others โ https://entra.chat/rss
Merill's socials
๐บ YouTube โ youtube.com/@merillx
๐ LinkedIn โ linkedin.com/in/merill
๐ค Twitter โ twitter.com/merill
๐บ TikTok โ tiktok.com/@merillf
๐ฆ Bluesky โ bsky.app/profile/merill.net
๐ Mastodon โ infosec.exchange/@merill
๐งต Threads โ threads.net/@merillf
๐ค GitHub โ github.com/merill
Get full access to Entra.News - Your weekly dose of Microsoft Entra at entra.news/subscribe
More shows like Entra.Chat
View all
StarTalk Radio
14,341 Listeners
The Infinite Monkey Cage
1,973 Listeners
WSJ Tech News Briefing
1,655 Listeners
Risky Business
373 Listeners
Down the Security Rabbithole Podcast (DtSR)
97 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
650 Listeners
Click Here
420 Listeners
Microsoft Cloud IT Pro Podcast
64 Listeners
Darknet Diaries
8,116 Listeners
Hacking Humans
317 Listeners
Three Buddy Problem
61 Listeners
Hybrid Identity Protection Podcast
3 Listeners
CISO Tradecraftยฎ
49 Listeners
Risky Bulletin
45 Listeners
Critical Thinking - Bug Bounty Podcast
55 Listeners