cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Synchronize Azure user account status (in/active) in IAS via IPS

Colt
Active Contributor

on ‎2022 Mar 29 3:28 PM

0 Kudos
562

Hi Folks,

has anyone in the community already managed to synchronize the account status of an Azure user (active or inactive) with the IAS via IPS?

The aim should be that users set to inactive in Azure are set to inactive in IAS as soon as the next IPS job run pulls the updates from Azure.

Thanks
Carsten

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (2)

Answers (2)

Colt
Active Contributor
‎2022 Mar 29 4:57 PM

Hi Yogananda,

it is a nice blog but doesn't help me in that scenario. However, I managed it in the meantime.

First expanded property "aad.user.attributes" in source system with "accountEnabled" according to MS graph reference and then adjusted source (Azure) transformation:

         {
                "sourcePath": "$.accountEnabled",
                "optional": true,
                "targetPath": "$['urn:ietf:params:scim:schemas:extension:enterprise:2.0:User']['accountEnabled']"
            },

Adjusted target (IAS) transformation:

 {
                "sourcePath": "$['urn:ietf:params:scim:schemas:extension:enterprise:2.0:User']['accountEnabled']",
                "optional": true,
                "targetPath": "$.active",
                "defaultValue": true
            },

Cheers Carsten

Show replies
Show replies
tskwin
Participant
‎2024 Dec 02 12:18 PM
0 Kudos

Hello @Colt,

 

I entered the upper code in the Source (Azure) Default Transformation. Then, I entered the lower code in the Target (IAS) Default Transformation. However, I am getting this error.

Duplicated source and target paths warning

source and targetPath $.members[?(@.value)] is duplicated in the group entity. As the order of the transformation execution matters, the last specified targetPath is taken into account.
 
Duplicated source and target paths warning
source and targetPath $.members[?(@.value)] is duplicated in the group entity. As the order of the transformation execution matters, the last specified targetPath is taken into account.

How can this error be fixed?

 

Many Thanks

Best Regards

Yogananda
Product and Topic Expert
Product and Topic Expert
‎2022 Mar 29 4:24 PM
0 Kudos

Hi colt

This below blog will provide much information on how to pull users from Inactive to active and active to Inactive.

https://blogs.sap.com/2022/02/04/provision-users-from-microsoft-azure-ad-to-sap-cloud-identity-servi...

Show replies
Show replies
Ask a Question