Share via

API Driven Inbound Provisioning Service not populating Email field

Mithunkumar Chopda 41 Reputation points
2023-12-14T01:49:18.91+00:00

The sample bulk upload file contains

        "emails": [
          {
            "value": "******@contoso.com",
            "type": "work",
            "primary": true
          }
        ]

The default attribute mapping maps emails[type eq "work"].value to mail attribute.

However, the mail attribute value is not populated during provisioning.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. Givary-MSFT 35,621 Reputation points Microsoft Employee Moderator
    2024-01-10T06:50:33.9266667+00:00

    @Mithunkumar Chopda Apologies for the delayed response, Regarding your above mentioned query - I am trying this integration directly with Entra ID, no on-prem involved even though customer's topology involves on-prem to Entra ID sync. In my scenario, the Identity can use personal email and I need to populate it in Email field.

    If you want to populate personal email, you need to populate the same in other mails attribute of user.

    Reference below screenshot:

    User's image

    How this can be achieved is via configuring attribute mappings like below:

    User's image

    Also refer to this article on how mail attribute is calculated for the user and why license is needed (as mentioned by Danny in his above answer) - https://learn.microsoft.com/en-us/troubleshoot/azure/active-directory/proxyaddresses-attribute-populate

    Hope this clarifies your ask, apologies once again for the delayed response.

    Let me know if you have any further questions, feel free to post back.

    Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.

    1 person found this answer helpful.

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Givary-MSFT 35,621 Reputation points Microsoft Employee Moderator
    2023-12-14T08:26:54.2366667+00:00

    @Mithunkumar Chopda Thank you for reaching out to us, As I understand you have query on API Driven Inbound Provisioning Service not populating Email field.

    Similar issue has been discussed here - https://stackoverflow.com/questions/76763662/is-microsoft-azure-misusing-the-scim-rfc-emailstype-eq-work-value-eq-foo where one of our PM has answered this post, hope this information helps you.

    Let me know if you have any further questions, feel free to post back.

  2. Danny Zollner 10,801 Reputation points Microsoft Employee Moderator
    2023-12-14T21:27:54.02+00:00

    Assuming you are targeting Entra ID/Azure AD, at this time, the mail attribute cannot be written to via either the inbound provisioning API or any of our inbound HR provisioning integrations. This will be managed by Exchange Online if/when an Exchange license is activated on the user, at which point the email related attributes will be populated by the Exchange Online service.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.