User Provisioning Skipped When User Unassigned from Enterprise App in Azure AD

Question

User Provisioning Skipped When User Unassigned from Enterprise App in Azure AD

Pankaj Patil 0

Using Azure AD (Entra ID) for connecting to an external app and supporting SSO, the intention is to control user management entirely from Azure.

User provisioning works when users are assigned to the app, resulting in user creation in the external app. However, synchronization is skipped when attempting to unassign a user from the app. It seems that a patch request should be sent with the active status set to false, as a delete request is only sent if the user is actually deleted. I can work with any request being sent (be it a delete or patch request).

Is there a way to resolve this issue?

(Edit: Removed the solution needing free EntraID tier requirement)

User's image

1 answer

Your answer

Answer 1

Anonymous

Hello @Pankaj Patil

Thank you for reaching out to Microsoft Q&A.

We understand that you are facing an issue with user provisioning when users are being unassigned from the app, else it is working as expected. Typically, the NotEffectivelyEntitled skip reason is noticed when there is a problem with the user assignment record stored in Microsoft Entra ID. To fix this issue, try stopping the provisioning service from the Azure portal, adding the user and removing it again. Also, if a required attribute is missing the provisioning process might skip that user. Ensure all necessary attributes are correctly configured.

Kindly refer the document for more information: https://learn.microsoft.com/en-us/entra/identity/app-provisioning/application-provisioning-config-problem-no-users-provisioned

Hope this helps. Do let us know if you any further queries.

Thanks & Regards

Janaki Kota

If this answers your query, do click Accept Answer and Yes for was this answer helpful.

Pankaj Patil 0 Reputation points

2025-01-24T10:49:11.4766667+00:00

Hi @Anonymous

This didn't solve the issue.

I expected Azure AD User provisioning to send update with active:False when user assignment is removed from my custom non-gallery application

Instead its skipped
Anonymous

2025-01-24T16:43:39.36+00:00

Hello @Pankaj Patil,

We are checking this internally. We will keep you posted with an update at earliest.

Best Regards,

Janaki Kota
Anonymous

2025-01-28T15:42:12.2433333+00:00

Hello @Pankaj Patil,

Upon checking this with internal experts, the issue seems to be an expected behavior which needs further troubleshooting. If you have a support plan, could you please file a support ticket for deeper investigation and do share the SR# with us?

In case if you don't have a support plan, please let us know here.

Thanks& Regards

Janaki Kota
Anonymous

2025-01-29T13:07:39.46+00:00

Hello @Pankaj Patil,

Following up to check if you are able to file a support ticket? If yes, please do share the SR# with us?
Anonymous

2025-01-30T10:41:53.28+00:00

Hello @Pankaj Patil,

Following up to check if you are able to file a support ticket? If yes, please do share the SR# with us?

Share via

User Provisioning Skipped When User Unassigned from Enterprise App in Azure AD

1 answer

Your answer