Skip to content

Commit daaefe9

Browse files
OWinfreyATLOWinfreyATL
committed
3rd party note
1 parent 205d54e commit daaefe9

File tree

1 file changed

+3
-2
lines changed

1 file changed

+3
-2
lines changed

articles/active-directory/governance/lifecycle-workflow-extensibility.md

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -50,6 +50,9 @@ When creating custom task extensions, the scenarios for how it interacts with Li
5050
- **Launch and wait** - The Azure Logic App is started, and the following task's execution waits on the response from the Logic App. You enter a time duration for how long the custom task extension should wait for a response from the Azure Logic App. If no response is received within a customer defined duration window, the task is considered failed.
5151
:::image type="content" source="media/lifecycle-workflow-extensibility/custom-task-launch-wait.png" alt-text="Screenshot of custom task launch and wait task choice." lightbox="media/lifecycle-workflow-extensibility/custom-task-launch-wait.png":::
5252

53+
> [!NOTE]
54+
> You can also deploy a custom task that calls to a third party system. To learn more about this call, see: [taskProcessingResult: resume](/graph/api/identitygovernance-taskprocessingresult-resume).
55+
5356
## Response authorization
5457

5558
When you create a custom task extension that waits for a response from the Logic App, you're able to define which applications can send a response
@@ -62,8 +65,6 @@ Response authorization can be utilized in one of the following ways:
6265
- **No authorization** - With this choice you assign a Logic App or third party application an application permission (LifecycleWorkflows.ReadWrite.All), or role assignment (Lifecycle Workflows Administrator). This choice doesn't follow least privilege access as outlined in Azure Active Directory best practices. For more information on best practices for roles, see: [Best Practices for Azure AD roles](/azure/active-directory/roles/best-practices).
6366
- **Existing application** - With this choice you're able to choose an existing application to respond. You are able to choose applications that are system, user, or regular applications. For more information on managed identity types, see: [Managed identity types](../managed-identities-azure-resources/overview.md#managed-identity-types).
6467

65-
66-
6768
## Custom task extension integration with Azure Logic Apps high-level steps
6869

6970
The high-level steps for the Azure Logic Apps integration are as follows:

0 commit comments

Comments
 (0)