Azure AD Group aggregation errors

IdentityIQ (IIQ) IIQ Discussion and Questions
,
1

Which IIQ version are you inquiring about?

Version 8.2

Share all details related to your problem, including any error messages you may have received.

Hello,

I connected my Identityiq using AZURE AD.

Testing the connection everything is ok

When I try to aggregate group (bring the Azure groups to sailpoint ) I have some errors

I already give in the portal all the necessary permissions

i have the error

“Exception during aggregation of Object Type ServicePrincipal on Application Microsoft Entra. Reason: sailpoint.connector.ConnectorException: Exception occurred in Iterate Objects. Error message - Exception occurred in processReadRequest. Error - javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake”

2

Do you see anything on the firewall? It seems like network issue for me.

3

Hello @kjakubiak
When I test connection everything is ok and I Have connection

4

Hi @RIsidoro

try this:
Add these extra permissions to the APP reg:
Organization.Read.All
Group.Read.All
Application.Read.All
IdentityRiskEvent.Read.All
IdentityRiskyUser.Read.All

And that one (if the previous one didn’t work):
Remove the following attributes from the account schema:

  • riskLevel
  • riskState
  • riskDetai
5

Boa Tarde ricardo!
Parece que tem alguma coisa derrubando a conexão ou problema de rede.
tentou dar uma olhada nisso? talvez pelo tempo de conexão maior.
best!

Hey Ricardo can tou take a look into the network?

Cheers

6

Check if this one helps :

if you test connection is working , i would say execute the graphql API for server to see if you are able to fetch the data , so that you can rule out if any issue with connectivity .
Also this i have used in 7.3 . I think with recent newer version the API have changed.

1 Like
7

Hello

Thank you all.
I seems it was a connection problem between the sailpoint and https://graph.microsoft.com *

Its seems its ok now

Thank you all

1 Like