Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

AzureAD Connector - Filtering for accounts having certain values not in UPN

skaliyandil
New Contributor II
New Contributor II

‎02/01/2024 05:04 AM

Hi All,

Is it possible to apply a filter on the OOTB AAD connector to import accounts which are not having certain substring values (more than one) in UPN?

Regards,

Satish

Labels:
0 Kudos
4 REPLIES 4

Amit_Malik
Valued Contributor II
Valued Contributor II

‎02/01/2024 06:57 AM

Hi @skaliyandil ,

I don't think Saviynt uses it's own filtering syntax or methods. It actually supports what MS graph APIs does.

Something like this could help (not (mail in ('mail1@domain.com', 'mail2@domain.com'))). You can read what Graph APIs support here - https://learn.microsoft.com/en-us/graph/filter-query-parameter?tabs=http

Just remember to replace space with %20 and ' with %27 when you use in Saviynt. SO above filter would become (not%20(mail%20in%20(%27mail1@domain.com%27,%20%27mail2@domain.com%27)))

 

Good Luck!! 

 

Kind Regards,
Amit Malik
If this helped you move forward, please click on the "Kudos" button.
If this answers your query, please select "Accept As Solution".
0 Kudos

skaliyandil
New Contributor II
New Contributor II
In response to Amit_Malik

‎02/01/2024 08:59 PM

Hi @Amit_Malik ,

Thanks for your response, Does it support wildcard characters as well? in our case we dont have the exact value for matching UPN.

Following filter with * as wild character is still returning all users.

$filter=not( userPrincipalName in('test1*','test2*'))

 

Satish

0 Kudos

Amit_Malik
Valued Contributor II
Valued Contributor II
In response to skaliyandil

‎02/02/2024 03:06 AM

Hi @skaliyandil , worth trying what @rushikeshvartak has shared but if that doesn't work.

You may want to try Microsoft forums to find it out. It looks like graph API for users api might not support it. 

But in case , it is not supported in graph APIs, you can ask Azure team to have a script to update another attribute with constant values for the users that you need. But this is more on Microsoft side of things and less on Saviynt.

Kind Regards,
Amit Malik
If this helped you move forward, please click on the "Kudos" button.
If this answers your query, please select "Accept As Solution".
0 Kudos

rushikeshvartak
All-Star
All-Star

‎02/01/2024 09:02 PM

(!(userPrincipalName=*substring1*) & !(userPrincipalName=*substring2*))


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC