I would like to have an answer about how mto and access to customer tenants using GDAP works. I made the experience that when using GDAP, it is only possible to assign an incident to myself or any other user in the customer tenant. However I am NOT able to assign the incident to any of my SOC colleagues in my own "MSP"-Tenant. I guess this is just to how GDAP works, because with GDAP you are working only with some "projected"/hidden user account with appropriate rights in the customer tenant? So the user selector of the incident is just able to look at the target directory and enumerate the users there (including my "projected" user ID)?
What is the difference then between MTO and M365 Lighthouse? Why would a MSP or MSSP choose MTO over M365 Lighthouse? MTO co existing with M365 Lighthouse is confusing. It’s like Lighthouse is the mature product of MTO. Is Microsoft planning to discontinue M365 Lighthouse in place of MTO?
I think Lighthouse is primarily Azure focused - I know that our IT teams were freaking out when they saw the "potential" access that Lighthouse could have. MTO appears to solve that issue for us (I think).
There is Azure Lighthouse but I’m talking about M365 Lighthouse so I’m not sure what you mean by “Lighthouse is primarily Azure”. Access is done through GDAP for both Lighthouse and MTO. So how does MTO solves the access issue you’re talking about?
