Overview

Scrut integrates with Microsoft Entra via secure API-based authentication to automatically ingest user account and identity data. The integration runs automated tests to verify that Entra accounts are linked to users, deprovisioned when personnel leave, and protected with MFA. By syncing this evidence directly into Scrut’s GRC platform, organizations can eliminate manual checks, strengthen identity governance, and ensure audit-ready compliance with ease.

Why Connect

Provide auditors with MFA enforcement and account-to-user mapping Flag orphaned and external accounts for remediation Centralize vendor and identity data for simplified access reviews.

Supported Automated Tests

Scrut provides pre-built automated tests for Microsoft Entra (Azure AD). Here are a few examples of Scrut’s Microsoft Entra (Azure AD) tests:

• Access reviews completed for all in-scope applications
• Microsoft Entra (Azure AD) accounts associated with users
• Microsoft Entra (Azure AD) accounts deprovisioned when employees leave

Supported Automated Evidence

Scrut automates the collection of some evidences for Microsoft Entra (Azure AD). Here are a few examples of Scrut’s Microsoft Entra (Azure AD)-driven evidences that can be collected:

• Administrative Access Accounts' Authorizations
• Enabled Multi-Factor Authentication
• Offboarding - Logical Access & Physical Access Revocation
• Reports of User Access Reviews
• User Access Approval list to Application, Infrastructure and Service