A Linux administrator has a local account containing their primary account name across all Linux systems and they login to Saviynt UI using the same primary ID (AD user id). As a result, when they request a JIT session, Saviynt attempts to provision a user on target Linux with the primary ID of the user, but it fails because the account already exists.
Would it be possible to customize the account provisioning command by adding a prefix or suffix to the username ? The following command has not worked for me.
sudo useradd -u '${username}' -m -s /bin/bash 'adm_${username}' -p '${password}' -c '${user?.lastname}.${user?.firstname}/${user?.email}' -g users
