and more in a single search tool across platforms. Read the announcement here. |
02/07/2024 04:06 AM
In our environment, we need to provision Guest User in Azure AD.
However, the URL (https://graph.microsoft.com/v1.0/invitations) that creates Guest User does not allow us to edit detailed properties, so we have written an API in call2 to update attribute.
===
===
When we use this create account JSON to provision, call2 changes the attribute, but it updates the attribute with ${} still.
Where should I change to edit the attribute properly with Saviynt's user property?
02/07/2024 04:55 AM - edited 02/07/2024 04:56 AM
Hi @JPMac ,
This could happen because of Azure side sync where in the ID is returned but the object is still not created and synced fully. I can't guarantee the root cause analysis is correct but to solve this problem we did :
We used to see this issue intermittently (Only for GUEST accounts), after waiting for a min or two , it used to work. So we invited the user via create account JSON and created an Analytic report to find such entries and update account. Here is the sample :
select distinct a.name,a.accountkey as acctKey, endpointkey, 'updateAccount' as Default_Action_For_Analytics from accounts a,user_accounts ua,users u,arstasks at where ua.userkey=u.userkey and ua.accountkey=a.accountkey and a.endpointkey='2' and a.endpointkey=at.endpoint and u.customproperty10 in ('Workday(S)','Workday(IRA)') and at.userkey=u.userkey and u.userkey in (select userkey from arstasks at where at.tasktype=3 and at.status =3 and endpoint=2) and u.userkey not in (select userkey from arstasks at where at.tasktype in (12) and at.status in (1,3,4));
Good Luck !!
Kind Regards,
Amit
If it solved your challenge, please ACCEPT SOLUTION.
If informative enough hit Kudos
04/29/2024 04:25 AM