Hello Everyone,
We are faced with an issue where we are unable to identify if the BeforeProvisioningRule patched to an AD source is getting triggered or not.
We have patched the rule to the AD source using the patch API :
[ {
"op": "add",
"path": "/beforeProvisioningRule",
"value": {
"type": "RULE",
"id": "<<Rule_id_here>>",
"name": "AD RBA CORP Before Provisioning Rule"
}
}
]
Our rule contains a logic to change the user OU’s in the target AD application based on the Account Sync enabled attributes. We are trying to get the account requests from the provisioning plan, modify the attribute request to contain an “AC_NewParent” attribute and returning it to the account request.
The problem that we’re faced here is that we’re unable to identify if the rule is getting triggered because even if the account sync attribute values are changing, we do not see any OU movement (which should ideally happen via the BeforeProvisioningRule).
Can someone please help us with your feedback on this?
Thanks in advance.
Regards,
Arshad.