Azure Active Directory last sign in date time

ssolig · January 19, 2024, 3:07am

Hi folks,

We have an Azure Active Directory source and want to retrieve the last sign in attribute lastSignInDateTime. I had this working in our sandbox environment however when I went to deploy in production, the attribute will not populate. In addition, we now see the Azure AD account aggregation running for hours (when it would normally take 10 minutes to complete).

Here’s what we did:

Added string attribute lastSignInDateTime to the Azure AD account schema
Ran a manual aggregation on the source
Ran an unoptimized aggregation on the source

Further information:
When we look at our sandbox environment, it appears that the lastSignInDateTime attribute is no longer aggregating (since late November 2023). As far as I know, there have been no changes to the permissions on the IQService service account or changes to the Azure AD source configuration.

ssolig · January 19, 2024, 4:36am

Sorry found this in the Compass Community site, should resolve my issue:

https://community.sailpoint.com/t5/IdentityNow-Forum/Azure-Active-Directory-lastSignInDateTime/m-p/236499

system · March 19, 2024, 4:37am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Fetch LastUserActionTime from exchange online due to a business requirement IIQ Discussion and Questions	3	2207	July 19, 2023
Attribute sync - accountexpires AD attribute issue ISC Discussion and Questions	1	542	July 19, 2023
Attribute sync in Identitynow ISC Discussion and Questions provisioning	3	791	July 19, 2023
In IDN how can customization rule be added to active directory ISC Discussion and Questions	6	1295	July 19, 2023
Active Directory Aggregation Issue in IdentityNow ISC Discussion and Questions aggregation , identity-security-cloud	4	359	December 11, 2023

Azure Active Directory last sign in date time

Related Topics