I have a main azure tenant and 3 other tenants that we currently use Azure cross tenant sync - which I’d like to move over to SailPoint IDN to provision and de-provision accounts and Access Packages.
I setup the connectors with the correct permissions and it looks like it should work but then i get the error below:
Error: Incomplete items. Please contact your administrator.
Provisioning
sailpoint.connector.ConnectorException: Exception occurred. Error message - HTTP not ended OK. Response Code - 400 Error - The domain portion of the userPrincipalName property is invalid. You must use one of the verified domain names in your organization.
I’ve then gone to settings and registered my three azure tenants (currently set to pending) which requires me to update a CNAME record but Azure will only let me update DNS with a TXT record - has anyone else experience this issue?