Click HERE to see how Saviynt Intelligence is transforming the industry. |
04/24/2023 08:51 PM
Referring below Knowledge Articale
Can we use any other customproperty of entitlement while adding filter in Endpoints Filter for Azure AD or On Prem AD
For example :
{
"Sampletest AD Application": [
{
"memberOf": [
"customproperty1="AWS""
]
}
]
}
Solved! Go to Solution.
04/26/2023 08:50 AM
Hi @rushikeshvartak Let me verify if this can be achieved; will update you.
05/02/2023 10:07 AM
@SB any update , I believed since you created KB its working , can you share working JSON
05/02/2023 01:27 PM - edited 05/02/2023 01:28 PM
Customproperty attribute cannot be used in filter. This has to be the AADGroup or memberOf value
{ "APPLICATION_QA": [ { "AADGROUP": [ "group%" ] } ] }
{ "Sampletest2 ADSI Application": [ { "memberOf": [ "CN=ADgroup%,OU=Groups,OU=India,DC=contoso,DC=com" ] } ] }
05/02/2023 01:52 PM
So whatever mentioned in KB is wrong ?
05/02/2023 01:55 PM
There is enhancement https://ideas.saviynt.com/ideas/EIC-I-2364 , Please confirm if this is considered for all connectors or not
05/02/2023 02:00 PM
I believe this is still being planned. You can update the ask/confirm on the idea itself.
05/02/2023 02:09 PM
Looking at the KB screenshot, can you check something like this? Check if you get result in the LDAP browser , if yes then same should work from Saviynt also. I hope this is what @SB meant from the KB article.
{
"Sampletest2 ADSI Application": [
{
"department": [
"(&(objectCategory=person)(objectClass=user)(department=PM))"
]
}
]
}
Thanks
Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.
05/02/2023 02:02 PM
https://ideas.saviynt.com/ideas/EIC-I-4577 Idea has been requested for feature
05/02/2023 01:54 PM
The KB mentions to use the same filter that you can use in LDAP browser for AD. CustomerProperty is a Saviynt attribute and will not work in LDAP browser either.
05/02/2023 01:59 PM
Also This parameter currently supports only creating the logical endpoint based on the memberof filter