In order to manage Exchange Online and Skype for Business Online, you must manage one or more Office 365 tenants. Before you can manage Office 365 tenants you must enable support for Exchange Online or Skype for Business Online.
IMPORTANT:Microsoft Server limits the number of concurrent users connected to the WinRM/WinRS session to five and the number of shells per user to five, so ensure that the same user account is limited to five shell for DRA secondary servers.
For information on enabling Exchange Online or Skype for Business Online, see:
Before you configure DRA to manage your Exchange Online tenants, you must create an account in the Office 365 portal that has the following permissions:
DRA will use this account to perform all Exchange Online management tasks.
User management administrator in Office 365
Recipient management in Exchange Online
NOTE:This account can either be synced with your Active Directory environment or hosted in the Microsoft Office 365 cloud. DRA does not require that this account be in Active Directory to perform management tasks.
For more information about account permissions, see Least Privilege DRA Access Accounts.
Once you have enabled the online policy in DRA, you can access a new node under Configuration Management named Office 365 Tenants where you can manage new Office 365 tenants.
To add an Office 365 Tenant, navigate to Configuration Management > Office 365 Tenants, and follow the instructions in the wizard, including adding an Office 365 Tenant access account and configuring the refresh and update schedules.
DRA requires a Service Principal with Directory Readers permissions in order to collect data about the objects in the tenant.
To create the Service Principal, you can either provide DRA with the credentials for a user account with the Company Administrator role in Office 365, and DRA will create the Service Principal for you, or you can create the Service Principal offline.
NOTE:
DRA does not store Company Administrator credentials provided to create the Service Principal.
If you create the Service Principal offline, you must provide the service principal identifier and password in the wizard.
Adding an Office 365 tenant may take several minutes. Once the tenant is successfully added, DRA will perform a full accounts cache refresh (FACR) for the tenant. When the cache refresh is complete you can start to manage your Office 365 licenses and mailboxes for the tenant.