Can Azure be queried from ServiceNow to identify Azure AD group membership of a ServiceNow User?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-29-2024 07:58 AM
Hello team,
Is anyone aware how it is possible to query Azure AD from ServiceNow, to identify the Azure AD group membership of a given ServiceNow User?
Thanks,
Pat
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-29-2024 08:37 AM
Hi @PB7 ,
This can be done using OOTB Microsoft Azure Active Directory spoke available. Once you install the spoke OOTB, ServiceNow provide a action named "Look up Group Members Stream".
This action will need you to pass below inputs:
Inputs:
- Group ID - ID of the group whose members needs to be retrieved.
- Page Size - Number of records you wish to retrieve per page. NOTE: Page size must be a valid integer range between 1-999.
Outputs:
- Group Member details.
Regards,
Shloke
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-01-2024 06:20 AM
This is helpful, thanks.
I do anticipate cost being a discussion re: acquiring the AAD Spoke in Integ Hub.
Are you aware of a methodology to achieve the same or similar outcome via an LDAP config between SN and AAD?
Thanks,
Pat
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-06-2024 06:47 AM
I have never done this before using LDAP. But would recommend to look at below OOTB script include which contains methods , would be worth reviewing and see if you can make use of this:
Script Include : LDAPUtils
Replace instance with your instance name.
My preference would be still leveraging Integration hub and not to customize LDAP Utils.
Regards,
Shloke
