Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Azure Account Correlation Rule for Data inconsistency

Sunny
New Contributor III
New Contributor III

‎05/02/2024 10:03 PM - edited ‎05/02/2024 10:15 PM

In Azure we have inconsistent data(Not all data are coming for each user) for that we are using Advanced Correlation rule in endpoint configuration.

Where:

"customproperty13": "onPremisesSamAccountName",
"customproperty4": "mail",
"customproperty9": "mailNickname",

I have tried to make the below two advances query however its not working properly

Approach 1:

WHEN (users.EMAIL = accounts.CUSTOMPROPERTY4) THEN accounts.CUSTOMPROPERTY4
WHEN (users.username = accounts.customproperty9) THEN accounts.CUSTOMPROPERTY9
WHEN (concat(users.username,'@abc.com') = accounts.customproperty4) then accounts.CUSTOMPROPERTY4
WHEN concat(users.username,'@xyz.com') = accounts.customproperty4 THEN accounts.CUSTOMPROPERTY4
ELSE accounts.CUSTOMPROPERTY13 END

Approach 2:
WHEN users.EMAIL = accounts.CUSTOMPROPERTY4 THEN accounts.CUSTOMPROPERTY4
WHEN users.username = accounts.customproperty9 THEN accounts.CUSTOMPROPERTY9
WHEN users.username=accounts.CUSTOMPROPERTY13 THEN users.username
WHEN CONCAT(users.username, '@abc.com') = accounts.customproperty4 OR CONCAT(users.username, '@xyz.com') = accounts.customproperty4 THEN accounts.CUSTOMPROPERTY4
ELSE users.username
END

 

Approach 3 :

This approach is working for few sets of users however when we are running Full import job then the job is getting stuck and status eventually shows failed.

users.email = accounts.customproperty4 OR concat(users.username,'@abc.com') = accounts.customproperty4 OR concat(users.username,'@xyz.com') = accounts.customproperty4 OR users.username = accounts.customproperty9 OR users.username = accounts.customproperty13

How should we approach?

0 Kudos
3 REPLIES 3

rushikeshvartak
All-Star
All-Star

‎05/02/2024 10:21 PM

CASE
WHEN users.EMAIL = accounts.CUSTOMPROPERTY4 THEN accounts.CUSTOMPROPERTY4
WHEN users.username = accounts.customproperty9 THEN accounts.CUSTOMPROPERTY9
WHEN users.username = accounts.CUSTOMPROPERTY13 THEN users.username
WHEN CONCAT(users.username, '@abc.com') = accounts.customproperty4 THEN accounts.CUSTOMPROPERTY4
WHEN CONCAT(users.username, '@xyz.com') = accounts.customproperty4 THEN accounts.CUSTOMPROPERTY4
ELSE accounts.CUSTOMPROPERTY13
END


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Sunny
New Contributor III
New Contributor III

‎05/03/2024 12:51 AM

Hi @rushikeshvartak 

 

For Single user or a small set of user the Query works fine but when trying to do Full Import its taking longer time. Any suggestions to optimize it?

 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Sunny

‎05/05/2024 07:23 PM

You can use multi threaded job


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC