Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

To import Member only from AD

NM
Valued Contributor II
Valued Contributor II

‎04/16/2024 11:36 AM

Hi Team,

We want to import "Member" attribute from AD and not MemberOf attribute from AD, has anyone done the same configuration for AD connector?

Thanks

 

0 Kudos
10 REPLIES 10

rushikeshvartak
All-Star
All-Star

‎04/16/2024 08:15 PM

Did you tried it ? if yes what is error you are getting ?


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.
0 Kudos

NM
Valued Contributor II
Valued Contributor II
In response to rushikeshvartak

‎04/16/2024 08:21 PM

Hi @rushikeshvartak , It is importing the entitlement but the mapping between account and entitlement is not happening.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 08:22 PM

Please share json


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.
0 Kudos

NM
Valued Contributor II
Valued Contributor II
In response to rushikeshvartak

‎04/16/2024 08:27 PM

Hi @rushikeshvartak , Here mapping json

{"importGroupHierarchy" : "false","performGroupAccountLinking": "true","entitlementTypeName": "member","groupAccountMappingAttributeName":"member","incrementalTimeField": "whenChanged", "groupObjectClass":"(objectclass=group)", "mapping": "entitlement_value:distinguishedName_char,entitlement_glossary:description_char,RECONCILATION_FIELD:entitlement_value"}

0 Kudos

Raghu
All-Star
All-Star

‎04/16/2024 08:18 PM

@NM  check below article it will help full

https://forums.saviynt.com/t5/identity-governance/deleting-multi-valued-attributes-in-openldap/m-p/5...

 


Thanks,
Raghu
If this reply answered your question, Please Accept As Solution and hit Kudos.
0 Kudos

NM
Valued Contributor II
Valued Contributor II
In response to Raghu

‎04/16/2024 08:28 PM

Hi @Raghu , It is sort of a Custom LDAP configuration, I am just trying to find out a way to do it directly from AD connector .. just pulling in member instead of memberof

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 08:51 PM

Its not supported only memberof entitlement type is supported currently


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.
0 Kudos

NM
Valued Contributor II
Valued Contributor II
In response to rushikeshvartak

‎04/16/2024 11:17 PM - edited ‎04/16/2024 11:33 PM

@rushikeshvartak , we are 24.2 was anything changes because it does import the entitlementtype(Member).

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to NM

‎04/16/2024 11:34 PM

Yes its possible some one also done testing in past but code have hardcoded memberOf hence it won;t work. will share thread once found


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.
0 Kudos

NM
Valued Contributor II
Valued Contributor II
In response to rushikeshvartak

‎04/16/2024 11:40 PM

Hi @rushikeshvartak , Yes please Thanks!!.. timelines are quite tight for AD onboarding.

0 Kudos
Copyright © 2024 Khoros, LLC