Azure Entra ID - Role Attribute

Hi
I am trying to map roles[primary eq "True"].value to [appRoleAssignments] however when I try to provision a user I am getting the following error. The documentation and articles I have read suggest that this is the best method for mapping roles but I cannot get it to work, am I missing something?

Error message

StatusCode: RequestUriTooLong
Message: Processing of the HTTP request resulted in an exception. Please see the HTTP response returned by the 'Response' property of this exception for details.
Web Response:
{"status":"414","detail":"The requested operation failed with status 414;\n PubApiError[status=414,code=request.uri.too.long, message=The requested operation failed with status 414];\n contextId:[ eeb6093b-dd98-4f12-b480-f5ce56fc3590 ]","schemas":["urn:ietf:params:scim:api:messages:2.0:Error"]}

I have managed to get past this after reading the documentation again and using AppRoleAssignmentsComplex([appRoleAssignments]) as the EntraID Attribute but according to the documentation this should support assignment of multiple roles however when I try provision a user with multiple roles I receive the error below. Same error with AssertiveAppRoleAssignmentsComplex([appRoleAssignments]). AppRoleAssignmentsComplex([appRoleAssignments]) with one role works.

Several values were found for the property 'roles[primary eq "False"].value.' Only one value was expected. Please ensure that the property only has one value.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.