Microsoft 365 connector

This connector can be run in the cloud or using an on-premises connector server.

The Microsoft 365 connector gathers data about users from Office 365. Microsoft 365 policy defaults to reporting anonymized user names. You must change report settings in order for correct user names to be imported and used in Ivanti Neurons. For more information on this policy and how to change the setting, see Microsoft 365 reports show anonymous user names instead of actual user names.

For information about what data is imported and how it is mapped, see Mapping (below).

In order to connect Microsoft 365 to the Neurons Platform, you first need to create an application in Entra ID (formerly Azure AD) with the following permissions:

  • Directory.Read.All

  • Organization.Read.All

  • Reports.Read.All

  • User.Read

All permissions must be approved with Grant admin consent. For information on creating the app, see Creating apps in Entra ID for Microsoft connectors.

If you add or change permissions for the app after initial registration, the Microsoft Application Key will not be updated and will need to be generated again. Make sure to update the connector with the new secret after changing permissions.


A Microsoft 365 connector has the following options:

  • Connector name: A name for the connector.
  • Connector server name: The name of the connector server that this connector is associated with. When running the connector in the cloud, this server needs to be the Cloud option in the list.

    Each connector can only be associated with one connector server. If you added this connector to a specific connector server (on the Connectors > Connector Servers page), this field will be populated for you. Otherwise, you can select the server from the list.
  • Directory (tenant) ID: The ID of the tenant you created in Entra ID.
  • Application (client) ID: The ID of the application you created in Entra ID.
  • Client secret: The client secret associated with the application you created in Entra ID.
  • Date filter: To limit the amount of data that is gathered for Neurons, set a threshold for a specific number of days. The connector will not import records unless the user has checked in or otherwise changed during that time.
  • Repeats: How often the connector should gather data.
  • Start time: The time of day the connector should start running. To minimize the impact on your network and applications, we recommend that connectors generally run at night or on weekends.
  • Active: Whether the connector is active or not. While the connector is active, it runs according to the schedule you create. If you clear the check box, the connector is inactive and will not gather data until the check box is enabled again and the connector is saved.
  • Action Credentials: The credentials Ivanti Neurons uses to perform actions and queries on device or people records. The types of available actions and queries will depend on your specific work environment.

For details on configuring or using connectors, see Setting up connectors.


The data that this connector imports is mapped to target attributes in the Neurons Platform database.

For an overview of how the data imported by this connector is mapped to the Neurons target attributes, please download the CSV file using the button below.

Download mappings

For an overview of the Neurons target attributes per data type and the connector source attributes that are mapped to them, see Connector data mapping.