Azure AD Group aggregation errors

Which IIQ version are you inquiring about?

Version 8.2

Share all details related to your problem, including any error messages you may have received.

Hello,

I connected my Identityiq using AZURE AD.

Testing the connection everything is ok

When I try to aggregate group (bring the Azure groups to sailpoint ) I have some errors

I already give in the portal all the necessary permissions

i have the error

“Exception during aggregation of Object Type ServicePrincipal on Application Microsoft Entra. Reason: sailpoint.connector.ConnectorException: Exception occurred in Iterate Objects. Error message - Exception occurred in processReadRequest. Error - javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake”

Do you see anything on the firewall? It seems like network issue for me.

Hello @kjakubiak
When I test connection everything is ok and I Have connection

Hi @RIsidoro

try this:
Add these extra permissions to the APP reg:
Organization.Read.All
Group.Read.All
Application.Read.All
IdentityRiskEvent.Read.All
IdentityRiskyUser.Read.All

And that one (if the previous one didn’t work):
Remove the following attributes from the account schema:

• riskLevel
• riskState
• riskDetai

Boa Tarde ricardo!
Parece que tem alguma coisa derrubando a conexão ou problema de rede.
tentou dar uma olhada nisso? talvez pelo tempo de conexão maior.
best!

Hey Ricardo can tou take a look into the network?

Cheers

Check if this one helps :

if you test connection is working , i would say execute the graphql API for server to see if you are able to fetch the data , so that you can rule out if any issue with connectivity .
Also this i have used in 7.3 . I think with recent newer version the API have changed.

Hello

Thank you all.
I seems it was a connection problem between the sailpoint and https://graph.microsoft.com *

Its seems its ok now

Thank you all

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.