Need to provision Azure AD groups from SailPoint IIQ where we are provisioning Digital Workers IDs to on-premises Active Directory (ADs)

IdentityIQ (IIQ) IIQ Discussion and Questions
1

Hi All,

I hope all doing well. I need an advise/help regarding below.

We have a requirement to assign licenses for Digital Workers/Robotic IDs via Azure AD Groups, where Azure AD groups are not linked with on-premises AD groups and IDs are synced directly from on-premises Active Directory (ADs) to Azure.

Can we make provisioning plan as two phase, that provisioning the account first, and after it’s created, have a second request to trigger group membership request?

Notes :

  1. User can raise a separate request for Azure AD groups once the DW ID is created in the on-premises AD, ensuring that it has been synced to Azure. But application team has a concern to have user do two separate request in same tool.
  2. Azure AD groups are not available in on-premises Active Directory.

Please advise a best method to do it. Really appreciate the ideas.

Please let me know if you need some more clarifications. Thanks.

Regards,
Venu

2

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.