I created our first role that will grant a security group within Azure Active Directory source in IdentityNow. Initially we would receive the following error: 403 Error - Insufficient privileges to complete the operation. - I resolved this by coordinating with my server team and granting IDN Admin rights in Azure AD.
While creating the user account in Azure AD from IdentityNow, I am now receiving this error: sailpoint.connector.ConnectorException: Exception occurred. Error message - HTTP not ended OK. Response Code - 400 Error - Invalid value specified for property ‘passwordPolicies’ of resource ‘User’.
Shot in the dark, I am guessing our password policy for Azure AD is the issue. Any thoughts, solves, or hints as to how I could rectify this? Thank you in advance -
This indicates that you are passing an incorrect value for the passwordPolicies attribute for the new User in Azure. It appears there are only certain values that are allowed. See the doc here for the User schema: user resource type - Microsoft Graph v1.0 | Microsoft Learn
Specifies password policies for the user. This value is an enumeration with one possible value being DisableStrongPassword , which allows weaker passwords than the default policy to be specified. DisablePasswordExpiration can also be specified. The two may be specified together; for example: DisablePasswordExpiration, DisableStrongPassword .