Microsoft Entra ID & Hybrid Integration
Overview
VeridiumID supports direct integration with Microsoft Entra ID for cloud identity synchronization, authentication workflows, and biometric enrollment scenarios.
The platform implements a Unified User Model, allowing identities originating from Entra ID to be managed consistently within the Veridium ecosystem.
This integration supports:
Cloud-only Entra ID users
Hybrid users
Multi-tenant Entra environments
Extended attribute synchronization
JWT claim enrichment
Microsoft Graph-based identity operations
Universal User Model
VeridiumID no longer treats cloud and on-prem users as isolated identities.
Each user is represented as a unified identity object inside the platform.
Identity Source Attribution
Users are explicitly classified as:
Entra ID (Cloud-Only)
A user created and managed directly in Microsoft Entra ID, with no corresponding on-premises Active Directory account.
Active Directory
A user whose identity originates from an on-premises Active Directory environment.
Hybrid User
A user synchronized between on-premises Active Directory and Microsoft Entra ID, typically managed through a hybrid identity setup.
This classification enables:
Granular policy assignment
Easier troubleshooting
Improved identity visibility
Multi-Tenant Entra ID Architecture
Multiple Entra tenants can be configured simultaneously.
Each connector maintains:
Independent Tenant ID
Independent Client ID
Separate attribute mappings
Separate synchronization logic
Domain Pattern Matching
Administrators may configure domain patterns to control connector selection.
Examples:
*@company.onmicrosoft.com
*@subsidiary.comThis improves:
Performance
Routing accuracy
Multi-tenant scalability