Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Signinactivity for Azure AD connector issue

Harsha
Regular Contributor II
Regular Contributor II

Hi everyone,

Trying to pull signinactivity lastlogindateandtime from Azure AD for particular employeetype, can I do that ? if so how can I add that filter only for that particular attribute? Or I have to go with rest connector ?

Thank you,

Harsha

17 REPLIES 17

rushikeshvartak
All-Star
All-Star

You can do for all not for specific in Azure AD Connector. 

https://forums.saviynt.com/t5/identity-governance/azure-ad-customsecurityattributevalue-filters-in-a... 

https://forums.saviynt.com/t5/identity-governance/azure-signinactivity-retrieval-is-now-available-wi... 

for specific you can go with rest connector


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

Hi Rushikesh,

Thank you for suggesting that but in the postman if I try filtering out on employeetype it keeps saying its unsupported. Can you suggest where I am going wrong? Please check the screenshot:

Harsha_0-1726122029876.png

This is what I have given the get  https://graph.microsoft.com/v1.0/users?$select=displayname,mail,employeeType,signInActivity&$filter=...'

Thank you,

Harsha

https://graph.microsoft.com/v1.0/users?$select=displayName,mail,employeeType,signInActivity&$filter=employeeType eq 'A'

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

Hi rushikesh,

Thank you for the help I figured the issue with API. I can see the result in postman now but in the saviynt I dont see the data getting pulled and my suspect is some of the accounts dont have the siginactivity thats why it is not importing anything can you help?

JSON:

{
"accountParams": {
"connection": "userAuth",
"processingType": "SequentialAndIterative",
"call": {
"http": {
"url": "https://graph.microsoft.com/v1.0/users?$select=displayName,mail,employeeType,signInActivity&$filter=employeeType%20eq%20'XXXXX%20Account'%20or%20employeeType%20eq%20'XXXXX%20Account%20D'%20or%...",
"httpHeaders": {
"Authorization": "${access_token}",
"Accept": "application/json"
},
"httpContentType": "application/json",
"httpMethod": "GET"
},
"listField": "value",
"keyField": "accountID",
"colsToPropsMap": {
"accountID": "id~#~char",
"name": "userPrincipalName~#~char",
"lastlogondate": "${(signInActivity?.lastSignInDateTime != null) ? signInActivity.lastSignInDateTime : '1970-01-01T00:00:00Z'}~#~date"
}
},
"pagination": {
"nextUrl": {
"nextUrlPath": "${(response?.completeResponseMap?.get('signInActivity') == null) ? '' : response?.completeResponseMap?.get('signInActivity')}"
}
},
"acctEntParams": {}
}
}

what am I doing wrong here? 

Thank you,

Harsha

Please share postman screenshot and curl command [Refer https://codingnconcepts.com/postman/how-to-generate-curl-command-from-postman/ ]



⚠️‼️‼️Do not upload any attachments that contain sensitive information, such as IP Addresses, URLs, Company/Employee Names, Email Addresses, etc.‼️‼️⚠️


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

Hi,

Please refer below screenshot from postman, all the sensitive info is scrubbed on the above post as well as below:

Harsha_0-1726232171647.png

Thank you,

Harsha

In your json URL i dont see signinactivity added 

https://graph.microsoft.com/v1.0/users?$select=displayname,mail,employeeType,signInActivity&$filter=employeeType%20eq%20%27XXXXX%20Account%27%20or%20employeeType%20eq%20%27XXXXX%20Account%20D%27%20or%20employeeType%20eq%20%27XXXX%20Account%200%27&$count=true

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

Hi Rushikesh,

It does have the signinactivity filter I can see the result in postman for the first record I dont see signinactivity and there are few accounts which doesnt have signinactivity and my suspect it becuase of those records it is not importing in saviynt.Can you please check above json?

If this doesnt work and if I want to bring signin via azure connector for all the accounts there are 200k+ accounts and as I can see it doesnt seem like it is bringing signin for all the records. what to do in that case?

Thank you,

Harsha

Try with 1 user who have value and share logs


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

Hi Rushikesh,

Below are few errors  I see in the logs please check:

Harsha_0-1726480406267.png

Harsha_1-1726480585349.png

weird part is this connectionJSON worked last month was able to import not full data but atleast batch of 500, it didnt have issues. And there is no change after that.

You have disabledDeletedAccounts flag added in status threshold please remove it


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Harsha
Regular Contributor II
Regular Contributor II

No I dont have that in the threshold please check below :

Harsha_0-1726546335981.png

 

Import Account JSON


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

stalluri
Valued Contributor II
Valued Contributor II

@Harsha 

Signinactivity for the AzureAD connectiontype is not supported, but according to the Saviynt support team, it will be available in coming versions.
https://ideas.saviynt.com/ideas/EIC-I-5866

You can still use REST connecter and pull the info in to Saviynt.


Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.

@stalluri  Its already working from 24.4.6 and no Idea ticket is needed

Refer link shared above

its already validated


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

@rushikeshvartak 
Can you share the ACCOUNT_ATTRIBUTES and ACCOUNT_IMPORT_FIELDS
I tried it on 24.5.0 and 24.5.2, but it didn't work.


Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.

 

  
ACCOUNT_ATTRIBUTES{
"acctLabels": {
"customproperty1": "First Name",
"customproperty2": "Last Name",
"customproperty3": "Office Phone",
"customproperty10": "Account Status",
"customproperty11": "Employee ID",
"customproperty12": "Job Title",
"customproperty13": "User Type",
"customproperty14": "Directory Synced",
"customproperty16": "City",
"customproperty22": "Company Name",
"customproperty30": "Visibility"
},
"colsToPropsMap": {
"accountID": "id~#~char",
"name": "userPrincipalName~#~char",
"displayname": "displayName~#~char",
"accounttype": "#CONST#Service Account~#~char",
"customproperty1": "givenName~#~char",
"customproperty2": "surname~#~char",
"customproperty3": "businessPhones~#~char",
"customproperty10": "accountEnabled~#~bool",
"customproperty11": "employeeId~#~char",
"customproperty12": "jobTitle~#~char",
"customproperty13": "userType~#~char",
"customproperty14": "onPremisesSyncEnabled~#~bool",
"customproperty16": "city~#~char",
"customproperty17": "manager.userPrincipalName~#~char",
"customproperty18": "manager.employeeId~#~char",
"customproperty22": "companyName~#~char",
"customproperty23": "signInActivity~#~char",
"LASTLOGONDATE": "signInActivity.lastSignInDateTime~#~date",
"customproperty30": "visibility~#~char"
}
}
ACCOUNT_IMPORT_FIELDSid,userPrincipalName,companyName,givenName,surname,businessPhones,accountEnabled,employeeId,jobTitle,userType,displayName,onPremisesSyncEnabled,city,manager,signInActivity
  

 

 

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.