We have a use case where the Azure AD groups are having some eligible members (PAM) in target side, and we want to see those users account under the Saviynt entitlements for Azure AD.
The normal accounts are getting synced, but those accounts are not visible under Saviynt.
Do we have any option to enable so that those members can be pulled into Saviynt for certification purpose. If those are not pulled the cert will be of no use for business.
@Ekata : Are you able to see any other accounts from those OUs where you are missing privileged accounts? If not then I would suggest to check if service account has permissions to read the data from respective OUs.