General information

Microsoft Entra ID (formerly Azure AD) is a cloud-based identity and access management service that protects identities and secures access to applications and services in the cloud and on-premises. 

Services included

There are two Microsoft Entra organizations at KIT. 

• KIT - Karlsruhe Institute of Technology
  - Home organization for employees and guests & partners (GUP)
• student.kit.edu
  - Home organization for students

User accounts are created and updated in the respective Entra ID directories via synchronization from the KIT Active Directory (employees & GuP) or from the identity management system (students).

Authentication is performed via SAML, so that KIT account passwords are not stored in Entra ID and SSO via Shibboleth is still possible.
In addition to Microsoft M365 user accounts, M365 groups, licenses, and apps are managed in the Microsoft Admin Center and applicable policies are implemented.

Services not included

The SCC is responsible for administration. Currently, no IT administrators from other organizational units are involved.

Central service accounts and groups from KIT are currently not synchronized with Entra ID and are therefore not available in the cloud (OneDrive, Teams, etc.).