Hello! I have a managed Zammad instance (I’m a Zammad customer).
One of my customers asked us to enable the Microsoft 365 integration. I was able to make it work for a multi-tenant Azure application, so it works only for Microsoft 365 organizations (and not for personal Microsoft accounts).
I’m concerned that now any Microsoft 365 organizations are able to create user accounts inside my Zammad instance. For example, I was able to test the integration by creating a user account with a test Microsoft 365 organization I have. I was able to do so without allowing my test org anywhere inside Zammad, it just worked. A Zammad user account created like this can access anything in my Knowledge Base, for example.
I would like Zammad to allow me to filter out which Microsoft 365 organization domains are allowed to create user accounts inside my Zammad.