Hello all
I am using the AAD connector to integrate Sailpoint and ENTRA ID
When I do the aggregation of groups i want only to get and use groups of ENTRA (Cloud Source) and not on prem .
Can you help ?Thank you
In the OoTB Azure AD application schema for groups you have attribute called dirSyncEnabled .
For this you can create short customization rule to filter out groups which are dirSyncEnabled - you can use Group Customization rule for that
String dirSyncEnabled = object.get("dirSyncEnabled");
if(dirSyncEnabled == null || dirSyncEnabled.equals("false"))
{
return object;
}
Hey
Something like this right ?
<Rule name="Rule_AAD" type="ResourceObjectCustomization">
<Description>
This rule is configured on the application and is called after the connector has build a ResourceObject from the native application data.
</Description>
<Signature returnType="ResourceObject"/>
<Source>
String dirSyncEnabled = object.get("dirSyncEnabled");
if(dirSyncEnabled == null || dirSyncEnabled.equals("false"))
{
return object;
}
</Source>
</Rule>
And then add the rule in group
Customization Rule
Hi Ricardo check out this post.
Here I was able to add a group filter the application definition, although I did have to remove the owners from the schema in order for this to work.
Hey
In application definition where did you make the filter ? Maybe as I am in 8.2 I dont have that option
Thank you
I can’t recall if this is an option or not on 8.2, but as of 8.4 there was an option for user filter.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.