Integrations
Built on Microsoft Graph
Access Fabric reads your Entra directory through Microsoft Graph and writes review decisions back through the same API. Your users, groups, and access packages stay in Microsoft Entra — Access Fabric does not stand up a parallel identity store.
-
Entra Entitlement Management
Review campaigns are built as native access reviews in Entitlement Management. Access Fabric scopes reviewers and deadlines; Entra runs the underlying review objects.
-
Microsoft Graph
Reads users, groups, guests, and role assignments. Writes review decisions back through the same API — no parallel identity store in Access Fabric.
-
Microsoft Teams
Manager attestations and reviewer reminders are delivered in Teams. Reviewers respond without leaving the channel they already work in.
-
Lifecycle Workflows and HR feed
Joiner, mover, and leaver events from Entra Lifecycle Workflows and your HR feed trigger Access Fabric rules for provisioning and revocation.
-
ITSM hand-off
Leaver revocations and orphaned-role cleanup open tickets in your ITSM. Role removal is verified in Graph before the ticket closes.
-
Exportable decisions
Each campaign exports CSV or JSON with reviewer identity, decision, and timestamp — ready for ISO 27001:2022 or NIS2 Article 21 evidence.
How a leaver event travels
-
HR feed signals a leaver
The employee status change arrives from your HR system into Entra Lifecycle Workflows.
-
Lifecycle Workflow fires
Entra runs the configured leaver workflow and notifies Access Fabric through the Graph subscription.
-
Access Fabric opens an ITSM ticket
Role revocations and access-package removals are queued as tickets for your operations team.
-
Graph confirms removal
Access Fabric verifies each role assignment is gone in Microsoft Graph before closing the ticket.
Connect your tenant
Admin-consent the Graph application and run your first guest review. 90 days free, no card.