Hello,
We are developping our own SCIM connector to our LDAP.
I have a question regarding the filter usage and syntax.
We plan to give an externalId attribute to the user pushed from our LDAP, the manually provisionned user won't have this attribute. This will prevent the unmanaged user to be removed by mistake.
In order to get a list of only the synchronized users I though of using a filter like
externalId pr
But it does not seems to be supported (error 400) while the RFC7644 state that testing if an attribute is non empty should be possible ( RFC 7644 - System for Cross-domain Identity Management: Protocol (ietf.org)).
I also tried to use multiple conditions on a filter and the results are always empty even if the filter is obvious, for example : userName eq my_user_email and active eq true
What do I do wrong ?
Regards