Below is the modified PowerShell Script which you can use to create Access Request in Bulk to remove users.
#sandbox
$ClientID = "XXXXXXXXXXXXXXXXXXXXXXXXX"
$SecretID = "YYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYY"
$pair = "$($ClientID):$($SecretID)"
$encodedCreds = [System.Convert]::ToBase64String([System.Text.Encoding]::UTF8.GetBytes($pair))
$BasicAuth1 = "Basic $encodedCreds"
#Get credentials and encrypt them
$tokenParam = @{
URI = 'https://my-tenant.api.identitynow.com/oauth/token'
Body="grant_type=client_credentials"
Headers = @{'Authorization' = "$BasicAuth1";"Content-Type"='application/x-www-form-urlencoded;application/json;charset=UTF-8'}
Method = 'POST'
}
$tokenResponse = Invoke-RestMethod @tokenParam
$token = $tokenResponse.access_token
$users = Get-Content "D:\Add-Users.txt"
$entitlementId = ""
foreach ($user in $users) {
$body = @{
requestedFor = $user.split(':')
requestType = "REVOKE_ACCESS"
requestedItems = @(
[PSCustomObject]@{
type = "ENTITLEMENT"
id = $entitlementId
comment = "Assining entitlement to the users as per request from Karan"
}
)
}
(ConvertTo-Json $body -depth 5)
$params = @{
method = "POST"
uri = "https://my-tenant.api.identitynow.com/v3/access-requests"
body = (ConvertTo-Json $body -Depth 5)
headers = @{'Authorization' = "Bearer $token"}
ContentType = "application/json"
}
try {
$response = Invoke-RestMethod @params
$response
}
catch {
Write-Host $response
Write-Host $_.Exception.Message -ForegroundColor Red
Write-Host $_.Exception.ItemName -ForegroundColor Red
}
}
# Combined the data for CSV export
$CombinedData = @()
foreach ($user in $body.requestedFor) {
foreach ($item in $body.requestedItems) {
$flattenedData += [PSCustomObject]@{
RequestedFor = $user
RequestType = $body.requestType
ItemType = $item.type
ItemId = $item.id
ItemComment = $item.comment
}
}
}
$CombinedData| Export-Csv "C:\Users\Remove-Users.csv" -Append -NoTypeInformation