Hello all
I am using the AAD connector to integrate Sailpoint and ENTRA ID
When I do the aggregation of groups i want only to get and use groups of ENTRA (Cloud Source) and not on prem .
Can you help ?Thank you
In the OoTB Azure AD application schema for groups you have attribute called dirSyncEnabled .
For this you can create short customization rule to filter out groups which are dirSyncEnabled - you can use Group Customization rule for that
String dirSyncEnabled = object.get("dirSyncEnabled");
if(dirSyncEnabled == null || dirSyncEnabled.equals("false"))
{
return object;
}
Hey
Something like this right ?
<Rule name="Rule_AAD" type="ResourceObjectCustomization">
<Description>
This rule is configured on the application and is called after the connector has build a ResourceObject from the native application data.
</Description>
<Signature returnType="ResourceObject"/>
<Source>
String dirSyncEnabled = object.get("dirSyncEnabled");
if(dirSyncEnabled == null || dirSyncEnabled.equals("false"))
{
return object;
}
</Source>
</Rule>
And then add the rule in group
Customization Rule
Hi Ricardo check out this post.
Here I was able to add a group filter the application definition, although I did have to remove the owners from the schema in order for this to work.
Hey
In application definition where did you make the filter ? Maybe as I am in 8.2 I dont have that option
Thank you
I can’t recall if this is an option or not on 8.2, but as of 8.4 there was an option for user filter.