Introduction

This article explains the steps for creating an Azure Plan and within that Azure Plan one or more Azure Subscriptions that is connected to the Azure Active Directory that is also used by Microsoft 365 so that the M365 identities can be used natively for Azure Resources as well.

Steps

1. Eden Akers will create the new Customer in their Cloud Marketplace; https://marketplace.eden-akers.com 
2. Eden Akers will add the Microsoft 365 Tenant Vanity Domain (something.onmicrosoft.com) to the Customer created in the previous step
3. Based on the agreement with the Customer, Eden Akers will accept the Microsoft Customer Agreement
4. The Customer will need to validate this activity by accepting the so called "Existing Microsoft 365 Customer Invitation URL", which will look like this; https://admin.microsoft.com/Adminportal/Home?invType=IndirectResellerRelationship&partnerId=73735b9d-a7a5-4095-8185-5a719b142a39&msppId=6717448&indirectCSPId=569f807f-02a7-45c5-82a4-015a900f2055&DAP=false#/BillingAccounts/partner-invitation
   • Please note the "DAP=FALSE" in the invitation url. This means that with this step no permissions are granted.
5. After the link between the customers Tenant and the Eden Akers Marketplace has been setup, an email will be sent to setup the Base GDAP Permissions (link)
6. To enable others to manage and use Azure Subscriptions in the Azure Plan, Access Management for Azure Resources needs to be enabled by a Tenant Admin, see this link for instructions.
7. The Final Step is to add users to the Azure Subscription and grant the appropriate permissions for those users to use the Azure Subscription (link)