Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

To import Member only from AD

NM
Honored Contributor III
Honored Contributor III

‎04/16/2024 11:36 AM

Hi Team,

We want to import "Member" attribute from AD and not MemberOf attribute from AD, has anyone done the same configuration for AD connector?

Thanks

 


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos
10 REPLIES 10

rushikeshvartak
All-Star
All-Star

‎04/16/2024 08:15 PM

Did you tried it ? if yes what is error you are getting ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to rushikeshvartak

‎04/16/2024 08:21 PM

Hi @rushikeshvartak , It is importing the entitlement but the mapping between account and entitlement is not happening.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 08:22 PM

Please share json


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to rushikeshvartak

‎04/16/2024 08:27 PM

Hi @rushikeshvartak , Here mapping json

{"importGroupHierarchy" : "false","performGroupAccountLinking": "true","entitlementTypeName": "member","groupAccountMappingAttributeName":"member","incrementalTimeField": "whenChanged", "groupObjectClass":"(objectclass=group)", "mapping": "entitlement_value:distinguishedName_char,entitlement_glossary:description_char,RECONCILATION_FIELD:entitlement_value"}


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Raghu
All-Star
All-Star

‎04/16/2024 08:18 PM

@NM  check below article it will help full

https://forums.saviynt.com/t5/identity-governance/deleting-multi-valued-attributes-in-openldap/m-p/5...

 


Thanks,
Raghu
If this reply answered your question, Please Accept As Solution and hit Kudos.
0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to Raghu

‎04/16/2024 08:28 PM

Hi @Raghu , It is sort of a Custom LDAP configuration, I am just trying to find out a way to do it directly from AD connector .. just pulling in member instead of memberof


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 08:51 PM

Its not supported only memberof entitlement type is supported currently


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to rushikeshvartak

‎04/16/2024 11:17 PM - edited ‎04/16/2024 11:33 PM

@rushikeshvartak , we are 24.2 was anything changes because it does import the entitlementtype(Member).


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 11:34 PM

Yes its possible some one also done testing in past but code have hardcoded memberOf hence it won;t work. will share thread once found


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to rushikeshvartak

‎04/16/2024 11:40 PM

Hi @rushikeshvartak , Yes please Thanks!!.. timelines are quite tight for AD onboarding.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos
Copyright © 2024 Khoros, LLC