We are delighted to share our new EIC Delivery Methodology for efficiently managing Saviynt Implementations and delivering quick time to value. CLICK HERE.

Owner updates for AzureAD group is erroring out

hirenp
New Contributor III
New Contributor III

Hi,

I am trying to add / remove owners from Azure security group using below Json but it is erroring out

{
"connection": "userAuth",
"url": "https://graph.microsoft.com/v1.0/groups/${entitlementValue.entitlementID}",
"httpMethod": "PATCH",
"httpParams": "${(customproperty16=='office365')?'{\"description\": \"+roles.description\", \"displayName\": \"+roles.displayname\", \"groupTypes\": [\"Unified\"], \"mailEnabled\": true, \"mailNickname\": \"+roles.displayname\", \"securityEnabled\": false,\"owners@odata.bind\": [\"+allOwner\"]}': '{\"description\": \"+roles.description\", \"displayName\": \"+roles.displayname\", \"groupTypes\": [], \"mailEnabled\": false, \"mailNickname\": \"+roles.displayname\", \"securityEnabled\": true,\"owners@odata.bind\": [\"+allOwner\"]}'}",
"httpHeaders": {
"Authorization": "${access_token}",
"Content-Type": "application/json"
},
"httpContentType": "application/json"
}

Error logs

 

2023-05-19T11:24:20-07:00-ecm-worker-{"log":"2023-05-19 18:24:20,037 [quartzScheduler_Worker-7] ERROR azure.AzureADProvisioningService - Error occured while Azure AD group updation\n","stream":"stdout","time":"2023-05-19T18:24:20.037923388Z"}
 
2023-05-19T11:24:20-07:00-ecm-worker-{"log":"\u0009at com.saviynt.provisoning.azure.AzureADProvisioningService.createUpdateDeleteGroupAzureAD(AzureADProvisioningService.groovy:4085)\n","stream":"stdout","time":"2023-05-19T18:24:20.038022519Z"}
 
Here is the document link - Configuring the Integration for Managing Azure AD Groups (saviyntcloud.com) from where I am using the JSON

[This post has been edited by a Moderator to merge two posts.]
3 REPLIES 3

sudeshjaiswal
Saviynt Employee
Saviynt Employee

Hello @hirenp 

We are currently investigating your inquiry internally. We will provide you with updates as soon as we have more information.

In the meantime, could you please provide the following details:

1. Has this JSON configuration worked successfully in the past?
2. Have there been any recent upgrades or changes to the system?
3. Is this the first time you are attempting to update the owner using JSON?

Thank you,

hirenp
New Contributor III
New Contributor III

Hi @sudeshjaiswal 

1. The configuration provided in the documentation did not work for me.

2. We are currently on 23.4 version

3. Yes this is the new integration

sudeshjaiswal
Saviynt Employee
Saviynt Employee

Hello @hirenp,

Could you please try the below Json and let me know if it works,
{
"connection": "userAuth",
"url": "https://graph.microsoft.com/v1.0/groups/${entitlementValue.entitlementID}",
"httpMethod": "PATCH",
"httpParams": "{\"description\": \"${roles.description==null || roles.description==''? roles.displayname : roles.description}\", \"displayName\": \"${roles.displayname==null || roles.displayname==''? roles.role_name : roles.displayname}\", \"groupTypes\": [\"${roles.customproperty21=='Office365'? 'Unified' : ''}\"], \"mailEnabled\": \"${roles.customproperty22 == '1' ? true : false}\", \"mailNickname\": \"${roles.displayname==null || roles.displayname==''? roles.role_name : roles.displayname}\", \"securityEnabled\": \"${roles.customproperty23 == '1' ? true : false}\",\"owners@odata.bind\": [\"${allOwner}\"]}",
"httpHeaders": {
"Authorization": "${access_token}",
"Content-Type": "application/json"
},
"httpContentType": "application/json"
}

Thanks,