Package ld-azure-sync🔗
Version |
Arch |
MTime |
Size |
|---|---|---|---|
14.4 |
all |
April 4th, 2025 17:17 |
54.19 MiB |
ld-azure-sync (14.4) jammy; urgency=medium
[ Kai Fieger ]
* Update: Workaround for (temporary?) MS Graph API v1.0 bug/change,
preventing fresh installations (#4578)
-- SBE network solutions GmbH <info@sbe.de> Mon, 24 Mar 2025 15:04:17 +0100
ld-azure-sync (14.3) jammy; urgency=medium
[ Kai Fieger ]
* Bugfix: Transitive group membership change from 14.2 interfered with
ld-sg-group-creator membership. Effectively AllowGroupCreationForTeachers
was permanently set to false. (#4548)
-- SBE network solutions GmbH <info@sbe.de> Thu, 06 Mar 2025 13:22:47 +0100
ld-azure-sync (14.2) jammy; urgency=medium
[ Kai Fieger ]
* Update: Double check mails before updating them. Might prevent errors
where mails between Graph API and Exchange are out of sync. (#4423)
* Bugfix: CustomAttributes are now calculated based on all groups/users,
not just the ones that are synced (#4422)
Same change for transitive group memberships
* Bugfix: Trim whitespaces from displayNames, givenNames & surnames.
This prevents ld-azure-sync continuously trying to update them. (#4424)
-- SBE network solutions GmbH <info@sbe.de> Sat, 30 Nov 2024 16:03:10 +0100
ld-azure-sync (14.1) jammy; urgency=medium
[ Kai Fieger ]
* Requires ld-control-service >= 50.1
* Update: Less scary message if groupTypes differ #4221
* New: CustomAttribute System #4250 (Also fixes #4039)
* Bugfix: Add/Remove owner operations no longer log as add/remove member operations #4245
* Removed: Type field from ld-control-service log #4251
-- SBE network solutions GmbH <info@sbe.de> Fri, 27 Sep 2024 15:01:41 +0200
ld-azure-sync (14.0) jammy; urgency=medium
[ Kai Fieger ]
* Requires ld-control-service >= 50.0
-- SBE network solutions GmbH <info@sbe.de> Fri, 24 May 2024 09:49:05 +0200
ld-azure-sync (13.1) jammy; urgency=medium
[ Kai Fieger ]
* Bugfix: Update cn => uuid was impossible in 13.0
* "rename" cmd option is back (now named "fix-user-uuids")
-- SBE network solutions GmbH <info@sbe.de> Fri, 23 Feb 2024 10:40:20 +0100
ld-azure-sync (13.0) jammy; urgency=medium
[ Kai Fieger ]
* Able to recreate an existing group & delete/archive the old version
* Group types in Azure more closely represent the LD4.0 group types
-- SBE network solutions GmbH <info@sbe.de> Thu, 18 Jan 2024 16:28:17 +0100
ld-azure-sync (12.0) jammy; urgency=medium
[ Kai Fieger ]
* Updated Microsoft Teams PowerShell Module 4.5.0 => 5.5.0
* More robust TeamPolicyPackage assignments
* Faster ld-control-service findBys for groups & users
-- SBE network solutions GmbH <info@sbe.de> Wed, 25 Oct 2023 13:54:35 +0200
ld-azure-sync (11.0) jammy; urgency=medium
[ Kai Fieger ]
* LD4.0 changes
[ Torsten Fohrer ]
* Made service run as a non-root user
* Reworked Debian package & Azure pipeline
-- SBE network solutions GmbH <info@sbe.de> Wed, 09 Aug 2023 10:26:40 +0200
ld-azure-sync (10.3) xenial; urgency=medium
[ Kai Fieger ]
* Look for "Microsoft Teams Services" instead of "Microsoft Teams" to ensure
that Teams exists on the tenant
-- SBE network solutions GmbH <info@sbe.de> Wed, 20 Sep 2023 11:36:47 +0200
ld-azure-sync (10.2) xenial; urgency=medium
[ Kai Fieger ]
* Use EXO V3 module to connect to Exchange
-- SBE network solutions GmbH <info@sbe.de> Fri, 16 Jun 2023 10:32:47 +0200
ld-azure-sync (10.1) xenial; urgency=medium
[ Kai Fieger ]
* LdAzureSync also functions as a developer command-line tool
-- Kai Fieger <kf@sbe.de> Mon, 08 Aug 2022 10:37:43 +0200
ld-azure-sync (10.0) xenial; urgency=medium
[ Kai Fieger ]
* Adapted to ld-control-service API changes
* Bugfix: Stopped creating a random folder in /tmp/ every service restart
* Config: The Teams:MeetingPolicy: setting can be set to null to prevent
MeetingPolicy changes
* Config: "SyncUserRoleAsDepartment: true" will populate the department
field in Azure with "Lehrer" for teachers and "Schüler" for students
* Config: "AdditionalSecurityGroupForEvery365Group: true" will create an
additional security-group for every Microsoft365-group with the same
members & owners
-- Kai Fieger <kf@sbe.de> Thu, 18 Nov 2021 10:19:48 +0100
ld-azure-sync (9.3) xenial; urgency=medium
[ Kai Fieger ]
* Updated PowerShell Module: Microsoft Teams 2.0.0 => 4.5.0
-- Kai Fieger <kf@sbe.de> Mon, 04 Jul 2022 08:38:58 +0200
ld-azure-sync (9.2) xenial; urgency=medium
[ Kai Fieger ]
* AutoSubscribeNewMembers is set to true during group creation
-- Kai Fieger <kf@sbe.de> Mon, 15 Nov 2021 17:00:04 +0100
ld-azure-sync (9.1) xenial; urgency=medium
[ Kai Fieger ]
* Use Exchange PowerShell via a OAuth2 token instead of Basic Authentication
(Microsoft will retire Basic Authentication in the future)
-- Kai Fieger <kf@sbe.de> Tue, 28 Sep 2021 08:10:19 +0200
ld-azure-sync (9.0) xenial; urgency=medium
[ Kai Fieger ]
* Also syncs relevant Zarafa/Kopano mail aliases of the users to Azure
-- Kai Fieger <kf@sbe.de> Thu, 23 Sep 2021 14:10:37 +0200
ld-azure-sync (8.5) xenial; urgency=medium
[ Kai Fieger ]
* Proxy support
-- Kai Fieger <kf@sbe.de> Tue, 14 Sep 2021 09:37:18 +0200
ld-azure-sync (8.4) xenial; urgency=medium
[ Kai Fieger ]
* Able to handle very long domain names
-- Kai Fieger <kf@sbe.de> Tue, 07 Sep 2021 14:49:54 +0200
ld-azure-sync (8.3) xenial; urgency=medium
[ Kai Fieger ]
* Fixed UserCAL cleanup
-- Kai Fieger <kf@sbe.de> Mon, 06 Sep 2021 12:55:19 +0200
ld-azure-sync (8.2) xenial; urgency=medium
[ Kai Fieger ]
* Setting CustomAttribute1 via Exchange PowerShell
Prevents a conflict with Azure AD Connect
-- Kai Fieger <kf@sbe.de> Fri, 03 Sep 2021 15:28:20 +0200
ld-azure-sync (8.1) xenial; urgency=medium
[ Kai Fieger ]
* Bugfix: User conversion
-- Kai Fieger <kf@sbe.de> Mon, 16 Aug 2021 10:23:38 +0200
ld-azure-sync (8.0) xenial; urgency=medium
[ Kai Fieger ]
* Allow multiple syncs to share a single tenant
* Exclusive Domains:
- Sync has to claim a domain before it can assign it to users/groups
- Multiple syncs cannot claim the same domain
- Userconversion limited to the claimed domains
* Domain Assignments:
- Can assign multiple domains to a single user/group
- Domain assigned with the highest priority becomes the primary domain
- Primary domain => userprincipalname and primary email address of the user
- Other domains => secondary email addresses of the user
* AddressBookPolicies (ABP):
- Determine what users/groups a user can see in exchange (and teams)
- Separates users/groups of different schools/syncs
- Can share your ABPs with other syncs/schools
- Make your users/groups visible in ABPs other syncs/schools shared with
you
- Can also make azure guest users visible in an ABP
* Enforces User CALs (Client Access License). This limits the maximum number
of students ld-azure-sync can manage.
* Can handle the new custom Policy Packages in Microsoft Teams
* Better way to handle custom/extension properties in azure.
This create the "LogoDIDACT Schema Extension Application" application in
azure. DO NOT DELETE IT.
* Able to fix group membership discrepancies that can appear between AzureAD
and Exchange
* Exchange rule configuration (from 5.4) is now done via the
ld-control-center
* Users will get the name of their primary group as jobTitle
* Do not create a team from the "schueler"-group
even if it contains a teacher
* Stop the purge of student owned groups/teams introduced in version 4.6
-- Kai Fieger <kf@sbe.de> Thu, 10 Dec 2020 08:58:00 +0100
ld-azure-sync (7.3.6) xenial; urgency=medium
[ Kai Fieger ]
* ld-azure-sync can assign azure directory roles to users
-- Kai Fieger <kf@sbe.de> Mon, 22 Mar 2021 10:00:53 +0100
ld-azure-sync (7.3.5) xenial; urgency=medium
[ Kai Fieger ]
* Teams Meeting Policy: AutoAdmittedUsers, AllowPSTNUsersToBypassLobby and
DesignatedPresenterRoleMode is configurable.
-- Kai Fieger <kf@sbe.de> Wed, 17 Mar 2021 09:50:32 +0100
ld-azure-sync (7.3.4) xenial; urgency=medium
[ Kai Fieger ]
* Handle multiple schema extensions
-- Kai Fieger <kf@sbe.de> Thu, 18 Feb 2021 15:05:04 +0100
ld-azure-sync (7.3.3) xenial; urgency=medium
[ Kai Fieger ]
* Teams Policy Packages: Prefer some packages over others if multiple are
assigned to the same user (teacher > student, ...)
-- Kai Fieger <kf@sbe.de> Thu, 11 Feb 2021 15:43:14 +0100
ld-azure-sync (7.3.2) xenial; urgency=medium
[ Kai Fieger ]
* Can configure what schema extension ld-azure-sync should use
-- Kai Fieger <kf@sbe.de> Fri, 05 Feb 2021 13:23:25 +0100
ld-azure-sync (7.3.1) xenial; urgency=medium
[ Kai Fieger ]
* Teams: By default, only the meeting organizer has the 'presenter' role
(previously all participants had it)
* Teams: By default, only the meeting organizer can bypass the lobby
-- Kai Fieger <kf@sbe.de> Thu, 28 Jan 2021 09:06:08 +0100
ld-azure-sync (7.3) xenial; urgency=medium
[ Kai Fieger ]
* Will turn a class group into a team the moment it has an owner.
Previously waited for a teacher to own the group.
Now unmanaged owners are accepted.
-- Kai Fieger <kf@sbe.de> Thu, 01 Oct 2020 09:43:23 +0200
ld-azure-sync (7.1) xenial; urgency=medium
[ Kai Fieger ]
* Handle disappearing projection parameter during ld-control-service
pagination
-- Kai Fieger <kf@sbe.de> Fri, 18 Sep 2020 08:52:26 +0200
ld-azure-sync (7.0) xenial; urgency=medium
[ Kai Fieger ]
* Adapted to ld-control-service 42.12+
(API change)
-- Kai Fieger <kf@sbe.de> Thu, 17 Sep 2020 09:08:10 +0200
ld-azure-sync (6.3) xenial; urgency=medium
[ Kai Fieger ]
* Bugfix: Same as 6.2. Make sure array is returned in every case
-- Kai Fieger <kf@sbe.de> Mon, 24 Aug 2020 14:23:36 +0200
ld-azure-sync (6.2) xenial; urgency=medium
[ Kai Fieger ]
* Bugfix: Fixed rare case when Get-CsBatchPolicyAssignmentOperation returns
an array containing a single element
-- Kai Fieger <kf@sbe.de> Thu, 20 Aug 2020 14:12:25 +0200
ld-azure-sync (6.1) xenial; urgency=medium
[ Kai Fieger ]
* Bugfix: Correctly get available domains from the tenant
-- Kai Fieger <kf@sbe.de> Tue, 18 Aug 2020 12:00:49 +0200
ld-azure-sync (6.0) xenial; urgency=medium
[ Kai Fieger ]
* Adapted to new ld-control-service api
* New ld-control-service (42.8+) authentication:
* Authentication only possible if ld-control-service supports the current
ld-azure-sync version
-- Kai Fieger <kf@sbe.de> Fri, 14 Aug 2020 14:59:42 +0200
ld-azure-sync (5.7) xenial; urgency=medium
[ Kai Fieger ]
* Send list of deleted users/groups to ld-control-service,
where they can be marked for permanent cleanup (instead of waiting the 30 days)
* WebSocket connection to ld-control-service allows to trigger...
* permanent cleanup of marked deleted entities
* sync manually
* Ensure the primary mail address of a group matches the domain name
that was selected in the ld-control-center
* Send azure domain info to ld-control-service
-- Kai Fieger <kf@sbe.de> Wed, 24 Jun 2020 08:25:11 +0200
ld-azure-sync (5.6) xenial; urgency=medium
[ Kai Fieger ]
* Logs users that will not be converted
because they have a DirectoryRole (e.g. company admins, team admins, ...)
-- Kai Fieger <kf@sbe.de> Fri, 03 Jul 2020 09:47:46 +0200
ld-azure-sync (5.5) trusty; urgency=medium
[ Kai Fieger ]
* Bugfix: Correctly set application permissions the first time ld-azure-sync
is installed
Was bug since 5.0. Fresh install with 5.0-5.4 is impossible.
-- Kai Fieger <kf@sbe.de> Thu, 18 Jun 2020 13:36:50 +0200
ld-azure-sync (5.4) trusty; urgency=medium
[ Kai Fieger ]
* Configurable: Also stop teachers from creating new groups/teams
(default for students)
* Exchange rule configuration:
* Prevent users/groups from sending mails outside of the organization
* Prevent users/groups from receiving mails from outside of the
organization
-- Kai Fieger <kf@sbe.de> Thu, 04 Jun 2020 10:10:03 +0200
ld-azure-sync (5.3) trusty; urgency=medium
[ Kai Fieger ]
* Also log message in ld-control-center if a class team is not created because of a missing teacher (see 5.1)
-- Kai Fieger <kf@sbe.de> Mon, 18 May 2020 16:17:46 +0200
ld-azure-sync (5.2) trusty; urgency=medium
[ Kai Fieger ]
* Refuse to manage licenses for a user if it inherits licenses from a group
-- Kai Fieger <kf@sbe.de> Thu, 14 May 2020 11:27:43 +0200
ld-azure-sync (5.1) trusty; urgency=medium
[ Kai Fieger ]
* Only create a class team, once it contains a teacher
(Stopped adding an admin as default owner)
* Bugfix: Random password generation for the team admin user
-- Kai Fieger <kf@sbe.de> Wed, 13 May 2020 14:31:47 +0200
ld-azure-sync (5.0) trusty; urgency=medium
[ Kai Fieger ]
* Microsoft Teams policy package assignment
-- Kai Fieger <kf@sbe.de> Wed, 13 May 2020 09:53:39 +0200
ld-azure-sync (4.8) trusty; urgency=medium
[ Kai Fieger ]
* Ignore case while searching for Users to convert
-- Kai Fieger <kf@sbe.de> Fri, 08 May 2020 08:50:26 +0200
ld-azure-sync (4.7) trusty; urgency=medium
[ Kai Fieger ]
* Ability to convert unmanaged users(created by hand) to managed ones:
* 'ConflictingUsers: "CHECK"' in ld-azure-sync.yaml
lists all users that are supposed to be created
but already seem to exist in the Azure Tenant
* 'ConflictingUsers: "CONVERT"'
converts them to accounts managed by ld-azure-sync
* Users with a directory role (e.g. admin) will never be converted
-- Kai Fieger <kf@sbe.de> Tue, 05 May 2020 09:42:35 +0200
ld-azure-sync (4.6) trusty; urgency=medium
[ Kai Fieger ]
* Remove ANY group/team if
* It has a student owner
* And it has no non-student owner
-- Kai Fieger <kf@sbe.de> Tue, 28 Apr 2020 17:04:22 +0200
ld-azure-sync (4.5) trusty; urgency=medium
[ Kai Fieger ]
* GroupFilter configurable with regexes
* Students cannot create teams/office365 groups
* Managed via the "Group Creators" security group
* all users except students are in it
(even unmanaged users)
-- Kai Fieger <kf@sbe.de> Tue, 28 Apr 2020 14:59:00 +0200
ld-azure-sync (4.4) trusty; urgency=medium
[ Kai Fieger ]
* Do not sync ldcloud-groups
(unless they are direct member of ld-sg-azure)
-- Kai Fieger <kf@sbe.de> Thu, 23 Apr 2020 10:55:30 +0200
ld-azure-sync (4.3) trusty; urgency=medium
[ Kai Fieger ]
* ld-control-service log: guid|cn => cn
* Better error message than:
Property passwordProfile.password is invalid.
-- Kai Fieger <kf@sbe.de> Thu, 23 Apr 2020 09:04:03 +0200
ld-azure-sync (4.2) trusty; urgency=medium
[ Kai Fieger ]
* Handle floating pointer numbers in retryHeader
-- Kai Fieger <kf@sbe.de> Tue, 21 Apr 2020 11:55:19 +0200
ld-azure-sync (4.1) trusty; urgency=medium
[ Kai Fieger ]
* Log retryAfter Header if it cannot be parsed
-- Kai Fieger <kf@sbe.de> Fri, 17 Apr 2020 16:11:12 +0200
ld-azure-sync (4) trusty; urgency=medium
[ Kai Fieger ]
* PLC team for lehrer group
* Class team for other groups
* If a lehrer group member is part of another group
they automatically become an owner of it
* Restore deleted users/groups instead of re-creating them
* Better logging for UPDATE_USER:
* If a password was rejected as invalid, ld-azure-sync will still try
again during the next sync
=> invalid password error every sync, not just first time
-- Kai Fieger <kf@sbe.de> Fri, 17 Apr 2020 15:02:01 +0200
ld-azure-sync (3.1) trusty; urgency=medium
[ Kai Fieger ]
* No restart required until permissions to create microsoft teams
are recognized
* Faster team membership updates
-- Kai Fieger <kf@sbe.de> Wed, 15 Apr 2020 16:01:50 +0200
ld-azure-sync (3) trusty; urgency=medium
[ Kai Fieger ]
* Create a Microsoft Team from each group
* ld-azure-sync grants itself permissions
weird Microsoft Teams behavior
apparently being an admin isn't enough
* Group.ReadWrite.All
* Team.ReadBasic.All
* TeamsApp.Read.All
* TeamsTab.Read.All
-- Kai Fieger <kf@sbe.de> Tue, 14 Apr 2020 10:54:58 +0200
ld-azure-sync (2.2) trusty; urgency=medium
[ Kai Fieger ]
* Created Office365 are private
* non-members cannot see content
* require owner permission to join
-- Kai Fieger <kf@sbe.de> Fri, 03 Apr 2020 11:05:32 +0200
ld-azure-sync (2.1) trusty; urgency=medium
[ Kai Fieger ]
* Create Office365 groups (instead of security groups)
-- Kai Fieger <kf@sbe.de> Mon, 30 Mar 2020 14:36:13 +0200
ld-azure-sync (2) trusty; urgency=medium
[ Kai Fieger ]
* Send logging data to ld-control-service
-- Kai Fieger <kf@sbe.de> Thu, 26 Mar 2020 13:35:36 +0100
ld-azure-sync (1.2) trusty; urgency=medium
[ Kai Fieger ]
* fixed possible deadlock for semaphore
* correctly recognize changes in AzureSyncData
* service restarts ld-azure-sync every hour
-- Kai Fieger <kf@sbe.de> Wed, 01 Apr 2020 09:28:09 +0200
ld-azure-sync (1.1) trusty; urgency=medium
[ Kai Fieger ]
* Better logging for AzureSyncData
-- Kai Fieger <kf@sbe.de> Wed, 25 Mar 2020 08:06:06 +0100
ld-azure-sync (1) trusty; urgency=medium
[ Kai Fieger ]
* Uploads users, groups, group membership and license assignments from
ld-control-service to an azure tenant
-- Kai Fieger <kf@sbe.de> Wed, 19 Feb 2020 12:45:49 +0100