Hello,I have a situation where all my entitlements are imported through one endpoint. Those are Azure AD groups. I also have users from different companies in Saviynt which all needs access to same Azure AD, but with assignment of different entitleme...
I'm trying to import Azure AD groups with their respective owners into Saviynt.I have Azure AD Connector set up. Connector imports accounts normaly. Groups are also imported as entitlements with this ENTITLEMENT_ATTRIBUTE:"entitlementAttribute": {"AA...
I'm importing users from Azure AD with REST connector. All users in Azure AD have their manager assigned.On the import of users with REST connector, url https://graph.microsoft.com/v1.0/users?$select=attributes.... returns all attributes selected, bu...
I'm trying to implement REST connector to import users from Azure AD into Saviynt.REST connector is configured, and this is ImportUserJSON field:{"connection": "userAuth","url": "https://graph.microsoft.com/v1.0/users?$select=Id,userPrincipalName,acc...
I'm trying to use a simple filter when importing accounts from Azure AD with OOB connector.I want to import only accounts from certain company which is populated in companyName attribute in Azure AD.Filter is : startswith(companyName,'Company name') ...
Yes, that's what I was expecting also. Those users in Azure AD which were put as an owner to the group had their UPN's since it is primary identifier in Azure AD, but dinn't have email populated. Once I populated their email, they showed up as owners...
So, it seems that above mentioned solution does work, but ONLY if a user that is defined as group owner in Azure AD has an email populated. Once I populated email addresses on the users, they got imported as entitlement owners.
Hi,Unofrutnatelly this does not work, unless there is something else that needs to be specified somewhere else.And from hat I understand, this will import Ids and types into custom properties on the form, but it will not assign actual owner for entit...
Resolved! To get the manager in the second call of REST connector from Azure AD, you need to encode $ sign in the url for graph api call.It will only evaluate ${userIdentifier} from the first call if there is no other $ signs in the url.{"name": "cal...
Thanks RakeshMG,I tried that JSON also but in the second call I cannot extract attribute from first call, logs says its null. So, in the first call I have "userResponsePath": "value", since response of first API call returns value object with the lis...
