Azure AD connector user filter issue

I want to aggregate users where userPrincipalName ends with certain string(endsWith(userPrincipalName,‘[email protected]’)).

But I am getting below error while aggregation.

Exception occurred in Iterate Objects. Error message - sailpoint.connector.ConnectorException: Exception occurred in processReadRequest. Error - Response Code - 400 Error - 400 Operator ‘endsWith’ is not supported because it is used with the property ‘manager’ in $expand which requires $levels inside $expand. Refer to Advanced query capabilities on Microsoft Entra ID objects - Microsoft Graph | Microsoft Learn for more information

image1277×791 44.6 KB

Can anyone please suggest me the correct filter?

Along with userPrincipalName ends with certain string filter. Is it possible to aggregate users which are part of a certain group and userPrincipalName ends with certain string?

I have followed below documents and tried recommended approach but it didn’t help much. Maybe I am missing something.

Hi @Amrit1897 That first link includes the detail that you can’t use endswith filter together with selecting the manager attribute, and recommends removing the manager attribute from the schema.

Along with userPrincipalName ends with certain string filter. Is it possible to aggregate users which are part of a certain group?

Is it possible to aggregate users which are part of a certain group and userPrincipalName ends with certain string?

Hello,

In order to aggregate the records belonging to specific Group, you can use Group Membership Filter as per documentations.

image1485×568 69.8 KB

Note that it only supports couple of Group Types withing Azure and Not all of them.

Regards,

Rohit Wekhande.