Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Azure connector (ootb) - advanced queries support

AL
New Contributor II
New Contributor II

‎10/30/2023 01:37 PM

Hi,

Does Saviynt's Azure connector (ootb) support advanced queries (ConsistencyLevel:eventual), what looks to be required (MS Graph) to e.g. filter out groups synchronized from onPremise AD to Azure?

If yes (or if there is a way without this to achieve the same), since what SAV version?

Labels:
0 Kudos
7 REPLIES 7

rushikeshvartak
All-Star
All-Star

‎10/30/2023 09:22 PM

which graph API you trying to call ? and from which connector


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

AL
New Contributor II
New Contributor II
In response to rushikeshvartak

‎10/31/2023 11:27 AM

Standard connector:
Configuring the Integration for Account and Group Import (saviyntcloud.com)

Filtering already security groups only:

 

"group_filter": "securityEnabled eq true"

 

so we would like to extend this to also cloud only...

0 Kudos

Manu269
All-Star
All-Star

‎10/31/2023 02:34 PM

Refer this post: https://forums.saviynt.com/t5/identity-governance/excluding-azuread-groups-of-membership-type-is-dyn...

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos

AL
New Contributor II
New Contributor II
In response to Manu269

‎10/31/2023 04:15 PM

You are presuming there that all groups follow any naming convention, like start with Az in case of Azure or so but that's not the case. 

Group object has onPremisesSyncEnabled attribute, but to reach it required are advanced queries. Filter

> "group_filter":"securityEnabled eq true and onPremisesSyncEnabled ne true"

seems doesn't work in Sav (works in general if advanced queries supported).

Or anyone has a different experience or another way not groups name based?

rushikeshvartak
All-Star
All-Star
In response to AL

‎10/31/2023 09:48 PM

only standard filters works.

You can additionally use entitlement filter


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

AL
New Contributor II
New Contributor II
In response to rushikeshvartak

‎11/01/2023 09:39 AM

You can additionally use entitlement filter

You mean e.g. name based or so...  If so, this is not a way.

Is possible to connect to Azure (MS Graph) using any other generic connector (REST?) to be able achieve what is needed?

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to AL

‎11/01/2023 09:40 PM

You can use generic REST connector with MS Graph API 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC