Редактиране

Споделяне чрез


Understanding lifecycle workflows

The following document provides an overview of a workflow created using Lifecycle Workflows. Workflows automate tasks based on the joiner-mover-leaver(JML) cycle of lifecycle management, and split tasks for users into categories of where they fall in the lifecycle of an organization. These categories extend into templates, where they can be quickly customized to suit the needs of users in your organization. For more information, see: What are Lifecycle Workflows?.

Diagram of a lifecycle workflow.

Note

Lifecycle workflows enhances Microsoft Entra ID Governance's HR-driven provisioning by automating routine processes. While HR provisioning manages the creation and attribute updates of user accounts, lifecycle workflows provide additional automation of tasks.

License requirements

Using this feature requires Microsoft Entra ID Governance or Microsoft Entra Suite licenses. To find the right license for your requirements, see Microsoft Entra ID Governance licensing fundamentals.

Permissions and Roles

For a full list of supported delegated and application permissions required to use Lifecycle Workflows, see: Lifecycle workflows permissions.

For delegated scenarios, the admin needs should have at least the Lifecycle Workflows Administrator Microsoft Entra role:

Limits

For a full list of Lifecycle workflow service limits, see: Lifecycle Workflows Service Limits.

Parts of a workflow

A workflow can be broken down into the following three main parts:

Workflow part Description
General information This portion of a workflow covers basic information such as display name, and a description of what the workflow does.
Tasks Tasks are the actions that are taken when a workflow is executed.
Execution conditions Defines when(trigger), and for who(scope), a scheduled workflow runs. For more information on these two parameters, see Trigger details and Scope.

Templates

Creating a workflow via the Microsoft Entra admin center requires the use of a template. A Lifecycle Workflow template is a framework that is used for predefined tasks, and helps automate the creation of a workflow.

Understanding workflow template diagram.

The template, depending on its category, defines which tasks are available to be used, and then guide you through the creation of the workflow. The template provides input for basic description, execution conditions, and task information.

Note

Depending on the template you select, the options that will be available may vary. The images in this document uses the Onboarding pre-hire employee template to illustrate the parts of a workflow.

For more information, see Lifecycle workflow templates.

Workflow overview

Every workflow has its own overview section, where you can either take quick actions with the workflow, or view its details. This overview section is split into the three following parts:

  • Basic Information
  • My Feed
  • Quick Action

In this section you learn what each section tells you, and what actions you're able to take from this information.

Basic Information

When you select a workflow, the overview provides you with a list of basic details in the Basic Information section. These basic details provide you with information such as the workflow category, its ID, when it was modified, and when it's scheduled to run again. This information is important in providing quick details surrounding its current usage for administrative purposes. Basic information is also live data, meaning any quick change action that you take place on the overview page, is shown immediately within this section.

Within the Basic Information you can view the following information:

Name Description
Name The name of the workflow.
Description A brief description that describes the workflow.
Category A string identifying the category of the workflow.
Date Created The date and time the workflow was created.
Workflow ID A unique identifier for the workflow.
Schedule Defines if the workflow is currently scheduled to run.
Last run date The last date and time the workflow ran.
Last Modified The last date and time the workflow was modified.

My Feed

The My Feed section of the workflow overview contains a quick peek into when and how the workflow ran. This section also allows you to quickly jump to the target areas for more information. The following information is provided:

  • Next target run: The date and time of the next scheduled workflow run.
  • Total processed users: The total number of users processed by the workflow.
  • Processed users with failures: The total users processed with failed status by the workflow.
  • Failed tasks: The total number of failed
  • Number of tasks: The total number of tasks within the workflow.
  • Current version: How many new versions of the workflow have been created.

Quick Action

The Quick Action section allows you to quickly take action with your workflow. These quick actions can either be making the workflow do something, or used for history or editing purposes. The following actions you can take are:

Actions taken from the overview of a workflow allow you to quickly complete tasks, which can normally be done via the manage section of a workflow.

Update manage workflow section review.

Workflow basics

After selecting a template, on the basics screen:

  • Provide the information that is used in the description portion of the workflow.
  • Select the trigger that defines when the execution condition will occur.

Basics of a workflow.

Execution conditions

On the Workflow basics screen you also get to set the first detail, the trigger, for a workflow's execution conditions. The execution conditions of a workflow define when, and for who, a workflow runs. It's made up of two distinct parts known as the trigger, and the scope.

Trigger details

The trigger of a workflow defines when a scheduled workflow runs for users in scope for the workflow. The trigger of a workflow depends on the type of workflow you want to run.

The supported scheduled triggers are:

  • Attribute Changes
  • Group Membership change
  • Time based

Depending on which type of workflow you choose will determine which trigger you use for it.

Scope

The scope defines for who the scheduled workflow runs. Configuring this parameter allows you to further narrow down the users for whom the workflow is to be executed. Lifecycle Workflows supports a rich set of user properties for configuring the scope.

The scope depends on the trigger that you use.

  • For Attribute changes, the trigger is rule based and triggered when the attribute you defined is changed for a user.
  • For Group membership change, the trigger is group-based and triggered if a user is added or removed from a specific group.
  • For Time based attribute, the trigger is rule based and triggered when the time value you defined is met by a user.

For a detailed guide on setting the execution conditions for a workflow, see: Create a lifecycle workflow.

Scheduling

While newly created workflows are enabled by default, scheduling is an option that must be enabled manually. To verify whether the workflow is scheduled, you can view the Scheduled column.

Once scheduling is enabled, the workflow is evaluated based on the interval that is set within your workflow settings(default of three hours) to determine whether or not it should run based on the execution conditions.

Workflow template schedule.

To view a detailed guide on customizing the schedule of a workflow, see: Customize the schedule of workflows.

On-demand scheduling

A workflow can be run on-demand for testing or in situations where it's required.

Use the Run on demand feature to execute the workflow immediately. The workflow must be enabled before you can run it on demand.

Note

A workflow that is run on demand for a user does not take into account whether or not a user meets the workflow's execution conditions. It will apply the tasks regardless of whether the execution conditions are met by the user or not.

For more information, see: Run a workflow on-demand

History

When you've selected a workflow, you can view its historical information through the lens of its users, runs, and tasks. Being able to view information specifically from these viewpoints allows you to quickly narrow down specific information about how a workflow was processed.

For more information, see: Lifecycle Workflows history

Versioning

Workflow versions are separate workflows built using the same information of an original workflow, but with either the tasks or scope updated, so that they're reported differently within logs. Workflow versions can change the actions or even scope of an existing workflow.

Manage workflow versioning selection.

For more information, see: Lifecycle Workflows Versioning

Next steps