I am trying to run the Entra ID Aggregation but getting Error 400 however in other environment it ran fine, Please note that everything is in place, Test connection also got successful and every permission has been properly given on Entra Side with reference to [Required Permissions]
Has anybody encountered such issue or can help with some solution or what should be the debugging steps , Can the CLI help to find out any issues with the aggregation.
Need more information to troubleshoot this one. Are you using the SAAS connector, or the Virtual Appliance connector?
If you are using the SAAS connector, you can use the CLI to get the logs:
sail conn logs
For the Virtual Appliance connector, you would need to pull the ccg.log from the Virtual Appliance(s).
What features have you enabled in Feature Management in the connector? I have found that Test Connections are usually not setup to test to make sure each feature is working, just does a couple basic checks. So if you have a feature enabled, I would look at that first, maybe try the aggregation with the feature(s) disabled.
@Carlatto it was permission issue it got resolved by adding proper permissions to service principal account, for handling custom security attributes we need Attribute Assignment Administrator role plus we are using some aggregation filter which need this role particularly.
