Microsoft 365 (Office 365)
Connect Microsoft 365 to collect user account, MFA, and security policy evidence from your organization's Microsoft environment.
What is Microsoft 365?
Microsoft 365 (formerly Office 365) is Microsoft's productivity suite — Outlook, Teams, SharePoint, OneDrive, and more — all backed by Azure Active Directory (Entra ID) for identity management. Connecting this integration gives Imara visibility into your organization's user security posture across the entire Microsoft environment.
What Imara collects from Microsoft 365
- All user accounts and their status
- Multi-factor authentication (MFA) status per user
- Admin roles and privileged account configurations
- Conditional Access policy settings
- Guest and external user configurations
Required permissions
Imara requires an Azure App Registration with the following Microsoft Graph API Application permissions (read-only):
- User.Read.All — read all user profiles and MFA status
- Directory.Read.All — read directory data including roles and groups
- Policy.Read.All — read Conditional Access policies
These are application (not delegated) permissions — no user needs to remain logged in for syncs to work.
How to connect
- In the Azure portal, register a new application under Entra ID → App Registrations.
- Add the required Microsoft Graph Application permissions listed above and grant admin consent.
- Create a Client Secret for the application.
- In Imara, go to Integrations and select Microsoft 365.
- Enter your Tenant ID, Client ID, and Client Secret, then click Connect.
Frameworks supported
SOC 2, ISO 27001, HIPAA, NIST CSF, LGPD, GDPR.
What to expect
Like Google Workspace, this integration has high impact. Imara will surface users without MFA, accounts with stale passwords, and admin accounts without appropriate security policies — all mapped to specific controls in your active framework.