Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

Importing Roles From Azure AD

Smiling
Regular Contributor
Regular Contributor

Hello everyone,

I am able to import group from Azure AD using Azure AD Connector. but it's not importing roles. what operations I need to perform for importing Azure AD Roles.

8 REPLIES 8

rushikeshvartak
All-Star
All-Star

Does service account have required access


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

What is Required access need to perform role import ?

You mean AppRole entitlement type correct ?

rushikeshvartak_0-1698898699065.png

 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

Refer https://docs.saviyntcloud.com/bundle/AzureConf-v23x/page/Content/Registering-an-Application-in-Azure... 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

I Want to import following Roles

Shubham_More_1-1698902528723.png

 

 

Manu269
All-Star
All-Star

@Smiling are you using any ENTITLEMENT_ATTRIBUTE  filter?

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.

Smiling
Regular Contributor
Regular Contributor

@Manu269 Yes. Following Query I am using in ENTITLEMENT_ATTRIBUTE.

{
"entitlementAttribute": {
"AADGroup": {
"colsToPropsMap": {
"entitlementID": "id~#~char",
"entitlement_value": "displayName~#~char",
"description": "description~#~char",
"customproperty1": "deletedDateTime~#~char",
"customproperty2": "description~#~char",
"customproperty3": "membershipRule~#~char",
"customproperty5": "onPremisesSyncEnabled~#~char",
"customproperty6": "onPremisesLastSyncDateTime~#~char",
"customproperty7": "mail~#~char",
"customproperty8": "mailEnabled~#~char",
"customproperty9": "onPremisesSecurityIdentifier~#~char",
"customproperty10": "securityEnabled~#~char",
"customproperty11": "groupTypes~#~listAsString",
"customproperty13": "membershipRuleProcessingState~#~char",
"customproperty16": "resourceProvisioningOptions~#~char",
"customproperty17": "onPremisesSyncEnabled~#~char",
"customproperty18": "createdDateTime~#~char",
"customproperty19": "id~#~char"
}
}
}
}

Manu269
All-Star
All-Star

When you say role are you talking about 

DirectoryRole
AppRole
ApplicationInstanceAppRole

 If yes then you need to include these mappings also.

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.