Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Add Access task for Azure AD failing

Go to solution
varunpuri
Regular Contributor
Regular Contributor

‎01/17/2023 06:36 AM

Hi,

I am using the connectionJSON and addAccess json as provided in the Azure AD connector guide. Use case is simple. I am using the ARS to place request for an Azure AD group which is of the entitlement type AADGroup in Saviynt.

The request gets submitted and Add Access task gets generated successfully.

But, when I run the provisioning job, the following error comes up :

varunpuri_0-1673966139325.png

Kindly assist.

Best Regards,
Varun



Labels:
0 Kudos
2 REPLIES 2

Go to solution
rushikeshvartak
All-Star
All-Star

‎01/17/2023 06:48 AM

One of the value is null.

Use below JSON for addaccess

{
"call": [{
"name": "AADGroup",
"connection": "userAuth",
"url": "https://graph.microsoft.com/v1.0/groups/${entitlementValue.entitlementID}/members/\\$ref",
"httpMethod": "POST",
"httpParams": "{\"@odata.id\":\"https://graph.microsoft.com/v1.0/directoryObjects/${account.accountID}\"}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200,
201,
204,
205
]
}
},
{
"name": "DirectoryRole",
"connection": "userAuth",
"url": "https://graph.microsoft.com/v1.0/directoryRoles/${entitlementValue.entitlementID}/members/\\$ref",
"httpMethod": "POST",
"httpParams": "{\"@odata.id\":\"https://graph.microsoft.com/v1.0/directoryObjects/${account.accountID}\"}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200,
201,
204,
205
]
},
"unsuccessResponses": {
"odata~dot#error.code": [
"Request_BadRequest",
"Authentication_MissingOrMalformed",
"Request_ResourceNotFound",
"Authorization_RequestDenied",
"Authentication_Unauthorized"
]
}
}
]
}


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Go to solution
varunpuri
Regular Contributor
Regular Contributor

‎01/17/2023 07:09 AM

Thank You, @rushikeshvartak  🙂

0 Kudos
Copyright © 2024 Khoros, LLC