Share via

SCIM provisioning not working when using switch expression - attribute mapping

Ashley 1 Reputation point
2022-11-18T09:11:23.547+00:00

Hello,

I am trying to use an expression when mapping a field.

261861-screenshot-36.png

Getting this error when provisioning on demand:

Error code
SystemForCrossDomainIdentityManagementServerError

Error message
StatusCode: InternalServerError
Message: Processing of the HTTP request resulted in an exception. Please see the HTTP response returned by the 'Response' property of this exception for details.
Web Response:

261853-screenshot-37.png

261835-screenshot-38.png

I am trying to take department, and switch it to something else via the expression

Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Danny Zollner 10,801 Reputation points Microsoft Employee Moderator
    2022-11-18T16:03:20.2+00:00

    Two problems that I can see:

    1) The mapping may be fine - the error that you are seeing appears to be coming from the SCIM server that AAD Provisioning is talking to. AAD Provisioning sends a SCIM API request and the SCIM server is returning the InternalServerError. This needs to be investigated and debugged by whoever developed the connected application.

    2) The attribute you have mapped to is not valid - the SCIM core user schema is defined in https://datatracker.ietf.org/doc/html/rfc7643 and does not include a "domain" attribute. You/the app developer will need to rename that attribute to use a namespace that isn't reserved by the SCIM specification - something like urn:ietf:params:scim:schemas:extension:appName:2.0:User:domain instead.

    2 people found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.