How to add IIQ user to Service Principals IIQ- Azure AD connector

vineetkumarmishra · December 22, 2025, 10:50pm

Which IIQ version are you inquiring about?

8.4p1

I am trying to invite a user to Azure B2C and am able to invite the user. My next goal is to add a user to a particular servicePrincipal. I have aggregated the servicePrincipal as an entitlement in IIQ, but when I add it to the Role as an entitlement, I get the following error. Can anyone help with how they added a user to ServicePrincipals?

Message

connector.azuread.services.AzureAppRoleService:115 - Throwing validateRequestForApplicationRoleAddAndRemoval - sailpoint.connector.InvalidRequestException: Invalid Request in Provisioning Plan for application role assignment or removal.

uday_kilambi · December 23, 2025, 3:05pm

@vineetkumarmishra

As per SailPoint connector logic, nativeId and applicationRoleId which is the servicePrincipal Value should not be empty.

You can enable loggers for sailpoint.connector.azuread.services.AzureAppRoleService to check if the nativeId and applicationRoleId are provided by the plan properly

Regards,
Uday

Topic		Replies	Views
IIQ- Azure AD connector-Service Principals IIQ Discussion and Questions identityiq , ootb-connector	3	505	August 10, 2023
Service Principal Account Management IIQ Discussion and Questions aggregation , identityiq	12	101	March 24, 2025
Webservices connector, this entitlement does not exist IIQ Discussion and Questions webservice-connector , provisioning , entitlements	5	528	June 29, 2023
Add Entitlement Operation in webservice connector IIQ Discussion and Questions webservice-connector , identityiq	3	169	January 23, 2025
Webservice connector Add Entitlement issue IIQ Discussion and Questions webservice-connector , identityiq	7	265	November 29, 2024

How to add IIQ user to Service Principals IIQ- Azure AD connector

Which IIQ version are you inquiring about?

Related topics