Vanta's Office integration enables you to control which employees should be automatically marked in and out of scope in Vanta by creating and managing the "Vanta O365 Integration" app assignments within Azure.
IMPORTANT: Be sure to consult your CSM and / or auditor to validate the set of accounts that should and should not be managed by Vanta.
Step 1: Configure Office
Login to Azure and navigate to the Enterprise applications page to find the "Vanta O365 Integration" app:
Assign the "Vanta O365 Integration" app in Azure to the desired employees or groups:
Step 2: Validate account assignments
BEST PRACTICE: Vanta recommends creating an automated provisioning process to assign the Vanta app to new employees, or at least ensuring that you have developed a process.
Step 3: Enable the feature in Vanta
- Navigate to the Connections page under "Company Settings"
- Click the ellipsis - the three-dot menu - next to Office 365 and select "Configure scope"
- Enable the IdP scoping toggle:
Once this feature is enabled, all user scope will be managed through Azure and the scoping toggle in Vanta will be disabled. Vanta will update the scope status for IdP accounts on the next data fetch, which happens on an hourly basis.