Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Azure AD OOTB Connector - ENTITLEMENT_FILTER_JSON

ssudhakar
New Contributor III
New Contributor III

‎04/26/2023 11:53 PM

Hi Team,

We are planning to use ENTITLEMENT_FILTER_JSON in Azure AD OOTB Connector to bring only specific set of groups.

https://docs.saviyntcloud.com/bundle/AzureAD-v2022x/page/Content/Configuring-the-Integration-for-Acc...

ssudhakar_0-1682578310182.png

based on above documentation, 

  • The connector deactivates AAD groups and their associated accounts and entitlements that do not satisfy the filter criteria specified in ENTITLEMENT_FILTER_JSON parameter

So, what is meant by deactivation of associated accounts in above statement ?
     Accounts will get inactivated in Saviynt (status marked as SUSPENDED FROM IMPORT SERVICE / Inactive)
or
 Its just account entitlement association will be removed and account will not have any changes (No Status Change)

What happens to groups which does not satisfy the filter condition, though the statement says Deactivation, want to understand what exactly happens to group?
   Entitlement Status will be change to Inactive ?

Please provide some details.

0 Kudos
3 REPLIES 3

RakeshMG
Saviynt Employee
Saviynt Employee

‎04/27/2023 04:10 AM

The accounts which are not satisfying the condition and being imported in Saviynt will be marked as Suspended from Import service.

The entitlements will be set to Inactive if conditions are not satisfied.

Also the account entitlement association will be removed 

The groups will have accounts and entitlements, will not have status. But status of Account and entitlements will be updated.


​Regards

Rakesh M Goudar
0 Kudos

ssudhakar
New Contributor III
New Contributor III

‎04/28/2023 01:40 AM

Hi Rakesh,

Why Entitlement_Filter_JSON decides the status of Accounts ?

We have dedicated Account Import job and it also has got Account_filter, that should ideally set the status of account based on the filter condition.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to ssudhakar

‎04/28/2023 07:12 AM

Entitlement status will be set to inactive and mapping between account to entitlement will be removed 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC