User provisioning with Azure AD
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-23-2018 09:16 PM
Hello!
We have LDAP integration in our ServiceNow instance where we have mapped "user_name" with "samAccountName" from AD. Ex: abcxxx
Recently our customer moved to Azure AD and we need to integrate with Azure now instead of LDAP. We integrated with Azure and are able to configure SSO and provision users (following the Microsoft docs). However these new users provisioned are duplicate records, ie., from Azure the "user_name" field is mapped with "User Principal Name" field which is of the format lastname.firstname@companyname.com and does not match with the former user_names.
I believe samAccountName is not available in Azure AD and by default the user_name is mapped with User Principal Name and cannot be changed in Azure.
Has anyone else encountered this and how did you handle?
