This project involved developing a centralized Identity and Access Management (IAM) solution integrated into the Microsoft Entra ID (formerly Azure AD) ecosystem. The primary goal was to automate the user lifecycle—from access requests via multiple external portals to validation in CRM systems and automatic resource provisioning in Azure B2C.
Technical Challenges and Architecture
The architecture was designed to support dynamic moderation workflows, ensuring users are correctly segmented based on their institutional ties and real-time status in external databases.
- Microsoft Graph Integration: Implementation of a robust service layer to communicate with the Microsoft Graph API, allowing for the programmatic creation, suspension, and association of users with security groups.
- CRM Synchronization: Development of a rules engine that queries user status in an external CRM before any provisioning action, ensuring access integrity and compliance with business rules.
- Dynamic Registration API: Creation of a unified endpoint capable of processing requests from different portals, applying specific business logic for each entry context.
Solution Features
Custom Administrative Dashboard: Using the Laravel Filament framework, I delivered an intuitive admin panel for managing users in moderation. This panel allows administrators to review pending requests, track integration logs, and manage permissions granularly.
Automation and Notification Workflows: A transactional notification system that keeps users informed at every stage of the process—from request receipt to access confirmation or the need for additional review.
Security and Governance: Implementation of strict access policies, ensuring only users validated by CRM rules can access protected resources within the Microsoft environment.
Results and Technical Impact
The solution eliminated manual account provisioning processes, drastically reducing response times for new users and increasing operational security. The code’s modularity allows new portals or business rules to be added with minimal effort, ensuring the system’s longevity.
Tech Stack
- Backend: PHP 8.3 and Laravel 11.
- Admin Panel: Filament v3.
- Integrations: Microsoft Graph API and CRM REST APIs.
- Environment: Docker, Nginx, Redis.
