Could you please share your expert advice on how to implement the following attribute synchronization requirement?
We have Workday as our HR source and use it to create Active Directory accounts as a birthright application. Currently, attribute synchronization is configured to update AD attributes whenever there are changes in Workday. However, we want the synchronization to apply only to a specific group of users, such as those whose department is set to “IT”. Is this feasible?
@Sukumar_roy -
SailPoint does not currently support restricted, conditional, or filtered attribute synchronization natively.
To implement this functionality, you can either use the Update Provisioning policy of the AD source and apply a transform to validate the Department value before updating the attribute, or achieve the same result using a Before Provisioning Rule.
Mark it as solved if it helps.
You want to enable the sync on AD side or Workday? could you give more details on this.
Agreed with @officialamitguptaa better you go with update provisioning policy if it’s AD
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.