and more in a single search tool across platforms. Read the announcement here. |
03/12/2024 04:01 AM
Hi Team,
We have to import only 2 AAD groups from Azure AD based on groups displayname we tried below syntax but its importing all groups and account.
Please let us know the proper syntax for this use case.
{ "group_filter":"displayName eq 'E3 License Group' or displayName eq 'F3 License Group'"}
{"group_filter":"startswith(Entitlement value eq 'E3 License Group')"}
$filter=displayName eq 'E3 License Group' or displayName eq 'F3 License Group'
{ "group_filter":"displayName eq 'E3 License Group' or displayName eq 'F3 License Group'"}
{"group_filter": "securityEnabled eq false"}
{"group_filter":"startswith(displayname eq 'E3 License Group')&$count=true"}
Thanks,.
Gaurav
03/12/2024 05:22 AM
Hi @gwagh ,
This works for us : {
"group_filter":"startswith(displayName,%27Maersk WMS%27)"
}
One thing you need to make sure is you are replacing spaces with %20 and ' with %27. And follow Azure docs on what operators are supported.
Thanks,
Amit
If this answers your query, Please ACCEPT SOLUTION and give KUDOS.
03/12/2024 07:51 AM
So In the connection I have to pass this json or in JOB we have to map this ?
03/12/2024 09:40 AM
HI @gwagh , in the connection like this if you are using OOTB Azure Connector
If rest, then in importJson while calling get groups API.
Thanks,
Amit
If this answers your query, Please ACCEPT SOLUTION and give KUDOS.
03/12/2024 07:45 PM
@AmitM, @rushikeshvartak Which import type do you run after giving this ENTITLEMENT_FILTER_ JSON in the connector?
Do I need to run a custom access import type? or only Access type will work?
03/12/2024 07:52 PM
Once ENTITLEMENT_FILTER_ JSON is used run Full Import (Incremental is not supported)
03/12/2024 10:40 PM
03/17/2024 08:04 PM
Remove % and share logs in file
03/12/2024 05:40 AM
@gwagh below help full
https://forums.saviynt.com/t5/identity-governance/importing-only-specific-groups-openldap/m-p/32393
03/12/2024 07:50 AM
This is for OnPrem Active Directory, I want to use this in Azure AD, Thanks for your response.
03/12/2024 08:35 AM
@gwagh Few points to note :
Ensure that the filter conditions that you specify are supported by the Graph API.
If filter conditions are defined in this parameter and the ENTITLEMENT_FILTER_JSON element of the Application Data Import job, the filter criteria defined in the Application Data Import job trigger takes precedence
Specifying the filter conditions using the ENTITLEMENT_FILTER_JSON element of the Application Data Import job is deprecated in Release v2022.0.1.
03/12/2024 10:31 AM
Add below condition in Azure AD Connection used for Import in ENTITLEMENT_FILTER_JSON
{ "group_filter":"displayName eq 'E3 License Group' or displayName eq 'F3 License Group' "}
03/12/2024 10:35 PM