Thank you for your post!
I understand that you're having issues with your SCIM endpoint where the POST /Users request is working as expected within the remote service but you're seeing duplicate attributes within the response in Azure Active Directory. To hopefully help point you in the right direction and gain a better understanding of your issue, I'll share my findings below.
Findings:
Referencing the example that you shared since not all attributes are duplicated, have you looked into your:
- Provisioning logs to see if there are any errors or warnings related to the duplicated attributes.
- Attribute mapping configuration to ensure that the correct attributes are being mapped to the correct target attributes.
- Scoping filters to ensure that your users are being provisioned correctly.
- SCIM schema to ensure that the attributes are defined correctly.
For more info - Provisioning log Error codes
If you're still having issues after checking the above, can you share some more info below so I can gain a better understanding your issue:
- Are you seeing / receiving any error messages?
- How many users is this affecting?
- Since not all attributes are duplicated what attributes are, from what you've seen?
- Did this recently start occurring or has this been happening since you created your endpoint?
Any additional information would be greatly appreciated!
Additional Links:
- How to download and analyze the Microsoft Entra provisioning logs
- Known issues for provisioning in Microsoft Entra ID
- Troubleshoot on-premises application provisioning
- Troubleshoot HR user creation issues
- Troubleshoot inbound provisioning API issues (Public preview)
- What are the Microsoft Entra provisioning logs?
- Validate a SCIM endpoint
I hope this helps!
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.