Entra ID Sync Project is currently syncing AADGroup and AADServicePrincipal
On Entra ID a AADGroup could have als AADServicePrincipal as members.
The members are returned in the GraphAPI call "">graph.microsoft.com/.../members
At the moment, the SyncProject is only handling AADGroup and AADUser as Member and not AADServicePrincipal.
What is missing is the table AADServicePrincipalInGroup.
As far as I see, there that is missing as well in the newest version 9.3.1.
We are using 9.2.2.
I'm wondering what I should do now. I see the following options:
1: Wait for OneIdentity to come up with that feature (I think that takes to long)
2: Implement a full-fletsched SyncProject (based on Powershell Konnector)
3: Implement ProcessChains for Reading EntraID, and Provision to EntraID.
Option 2 and 3 requires a custom table CCC_AADServicePrincipalInGroup
What do you think about that?