Share via

Azure AD SCIM adding suffix and prefix to username when Deleting User

Anonymous
2020-10-16T14:36:34.75+00:00

Hi,
When I delete a user that is provisioned using SCIM,
I'm getting a PATCH request with the active field set to "False" as expected.
The Issue is that the username is modified to something like 64ff27af1dcf4e48b55aadd8675bcea2testemail@somedomanonmicrosoft.com.
This did not happen 2 or 3 days ago, is this something new. I'm not able to find an answer to this anywhere.

Thanks,
Kajan

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,818 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Danny Zollner 9,531 Reputation points Microsoft Employee
    2020-10-16T22:14:24.377+00:00

    The Azure AD Provisioning service reads data about users and groups via AAD Graph. When a user is soft-deleted(ie: in the Azure AD recycling bin), it is returned via AAD Graph/MS Graph with the ObjectId value prepended to the UserPrincipalName value. Your mapping is flowing UserPrincipalName -> userName, hence the observed change. This is expected behavior, and if you are seeing it inconsistently please open a support case via portal.azure.com to receive assistance in determining the cause of any unexpected behavior.

    0 comments