Microsoft Entra ID
Native connection via OAuth2 with admin consent. ServiceChanger reads your identity data and applies the right group and role memberships based on your users' attributes.
The problem
You still manage access in Entra ID largely by hand: changing group memberships by clicking through the Azure portal, user by user. It works, but it does not scale, and every change in your organization leaves you running behind. A dashboard that only displays your Entra data does not fix that; you need something that actually applies the change.
What you get
A native, secure connection that does not just read your identity data, but actually applies the right access in Entra ID.
Access that actually gets applied
ServiceChanger does not just read, it writes the right memberships back to Entra ID. Not a dashboard that only watches.
You hold the key
OAuth2 with scopes you revoke yourself. No service account, no passwords, no certificates.
No separate data silo
Everything runs on your own tenant via the official Microsoft Graph API, so you keep control.
Connected in minutes
One-time admin consent and the connection is live. No migration, no middleware.
How it works
1. Admin consent
You approve the requested scopes once in your tenant.
2. Read and apply
ServiceChanger reads the attributes and applies the right memberships in Entra ID.
Frequently asked questions
Which Graph scopes do you need?
Specific scopes to read identity data and manage group and role memberships. You see them at admin consent and can revoke them at any time.
Do you use a service account?
No. The connection uses OAuth2 with an app registration in your own tenant, without passwords or certificates.
Does my data stay in my tenant?
Yes. ServiceChanger works on your own Entra ID via the Graph API; no separate data silo is created.
Related
Want to see the Entra ID connection?