Hello,
Is there a way (via API’s) to do a single account aggregation on a source.
we have a requirements where we need to check against another LDAP directory if samAccountName exists. we do not want to aggregate all records, since that LDAP has more than 1 million records. Idea is to trigger the api on identitycreation and aggregate the record if found, so we can use that for uniqueaccount generation in AD.
Thank You!
You can setup source but do not aggregate accounts. Then use same code which is part of OOTB rule “Create Unique LDAP attribute” and check uniqueness for that attribute. Did not try this myself but seems possible.
but then, i will have to use provisioning actions( create profile) on that source. intention is to never provision to that source. it will just be used for checking.
thanks for your response.
You do not need create profile to use code inside that rule. you can refer that code in your generator code for another source. Feel free to create ES case for further design analysis.
You can use the reload account endpoint to perform a single account aggregation. You will need to combine this with the get sources endpoint and the get accounts endpoint to figure out the ID of the account you want to aggregate.