• Set proxy settings to access Azura AD

    Hi,

    Need some help.

    We are using Identity manager version 9.3.

    We have set proxy address in windows system and we have succefully connected do entraid ( with browse we see it). But when we run synchronization with workflow it's trying to connect directly…

  • Exchange full access permission in Business role

    Hi,

    I have a complete Exchange configuration where I’ve also imported mailboxes along with information about which users have Full Access to them. These mailboxes essentially function as shared mailboxes, and I’m able to manually add or remove Azure…

  • Automating EntraID Guest Account Cleanup

    Hi all,

    Has anyone implemented an automated process in One Identity Manager to disable or clean up inactive guest accounts from Microsoft EntraID?

    We’re exploring options like PowerShell or Graph API integration, but I’m curious if others have tackled…

  • Azure AD Last Login

    Is there the possibility to show in One Identity the last login in Azure? 

    The new version 9.3 will introduce this possibility?

  • Task "Synchronize this object" is missing in Tasks pannel

    Hello experts.

    I am turning to you becouse I'm running out of ideas as to why there is a task "Synchronize this object" present in DEV environment, but not in PROD environment.

    We created a first time installation at our customer in DEV…

  • Azure Active Directory Guest Accounts - Mail Change

    Hello,

    we are using the IMOD SE One Identity version 9.2 and we would like to manage Azure Active Directory Guest accounts, one for each identity.

    The identities associated with the Guest accounts might be modified by the Trusted Source which means that…

  • TSB_PersonHasTSBAccountDef_Autodelete_Account - Azure Account

    Hi Team,

    I am trying to delete Azure Account which is assigned to account def using some defined condition set in dynamic role.

    I have created a business role and created dynamic role and then assigned azure account def to role.

    when user gets deleted…

  • Manage Entra roles and pim groups

    Hi 

    Is there and way to manage group and roles with eligible users in One IM 9.2

    Thanks 

    Magnus 

  • How to assign shared mailbox to azure account?

    Hi All,

    In our 9.2.1 environment, we have configured both the connector for Azure AD and Exchange Online.

    We are having problems directly assigning a shared mailbox to Azure AD accounts.
    We are trying to assign them via system role with an Azure group…

  • Provisioning with accounts disabled

    Hello everyone,

    In this environment, I have a target system for both Active Directory and Azure AD connectors.

    For AD, everything is managed with account definitions, and we create/delete/modify accounts.

    However, for Azure AD, it’s different because…

  • Attribute list extension in Azure AD connector target system schema?

    Hello,

    I am working on reading groups from Azure AD using the Synchronization Editor Azure AD connector, on version 9.2.1.

    I need to be able to read all fields related to a Azure Group, such as the onPremisesSamAccountName, but it doesn't exist on…

  • MatchPatternMemberShip,

    I am having requirement to define the Azure AD group to get added for Standard and Cloud admin. I do not see any reference number in MPFM for this requirement. Do we have any link to see category and reference number

  • Sensitivity Label One Identity Manager

    Hello everyone,

    Is it possible to set or apply MS sensitivity labels via the OIM?

    Thank you very much in advance.

    Gilles 

  • Hi Microsoft says that they will enforce MFA in July

    Hi

    Microsoft says that they will enforce MFA in July and onwards for all users in Entra, will One Identity support managed identities or service principals for running the Azure AD connector, or how do you plan to solve this?

    Microsoft will require MFA…

  • De-Federating with ADFS/Azure

    We're moving our authentication from AD FS to Azure (Entra) authentication and a managed domain instead of Federated.    Has anyone done this before?  Are there any items we need to be on the lookout for?  Will we have more attributes that can be updated…

  • Disabled full managed AzureAD accounts license assignment

    Hi,

    Our customer wants to implement a functionality in One Identity that would remove all entitlements except one from the Azure AD accounts of users who are in the leaver process and are disabled. The accounts currently have account definitions assigned…

  • AAD Sync Project - Error on starting Initial Sync

    Hello everyone!

    I am using OIM v9.0 LTS. I transported a working Azure AD Project and adapted the connection variables according to the new environment. Browsing into the Targetsystem is possible so I assume that Application ID, Domain and Key are correct…

  • How to customize invite email when creating new Guest type Azure AD user account

    Can we customize invite email when creating new Guest type Azure AD user account?

    For now, whenever we are creating a new Guest user account via Azure AD connector in One Identity Manager, it is creating a guest user in Azure but sending invite email…

  • Azure AD authentication against Azure SQL Database

    Hello OIM community,

    We are using One Identity, running the database as an Azure SQL Database, with OIM servers running containerized on Azure cloud. We would like to start authenticating with Azure SQL Database using Azure Active Directory instead of…

  • How to assign automatically Distribution Groups

    Hi,

    I have to assign automatically Azure AD distribution groups to some accounts if they have the mailbox enabled and also depending of their location.

    Do you have any suggestions?

    Thank you,

    Elena

  • OIM 8.2 does not sync every Azure AD changes from target system to OIM

    Hi all,

    i have the following problem. We have configured a daily full sync of azure ad accounts. For some accounts, OIM does not recognize changes on extensionattributes, which where made in the azure ad. Also read object does not work.

    What can i do…

  • OIM 8.2 does not sync every Azure AD changes from target system to OIM

    Hi all,

    i have the following problem. We have configured a daily full sync of azure ad accounts. For some accounts, OIM does not recognize changes on extensionattributes, which where made in the azure ad. Also read object does not work.

    What can i do…

  • Microsoft licensing control

    Hi Team,

    Can we sync Azure AD last logon from Azure to 1IM via Azure OOB connector sync project?

    We are using version 8.2

    I raised ticket with support as well, but they responded me to connect with PSO Team.

  • Revision filter supported by which connectors

    What are the connectors that support the revision filter? Why doesn't Azure AD support revision filter? Would it be possible for connectors like Azure AD to receive revision filter?

  • NLog

    I found the script that runs the delta sync to Azure and in that script there is a reference to NLog..I need to find out if the script actually did anything, how can I find that logfile?

    This is the line in the script
    Dim log As NLog.LogSession = New NLog…