<div dir="auto">Thank you for your response. Other than building a new feature what other options are there? Let's say I import all the Azure accounts as users into Midpoint, can I mark the users as manager with the relationship between members and their respective managers?<div dir="auto"><br></div><div dir="auto">I am trying to understand how Midpoint can be leveraged for access certification with Azure AD being the source of users.</div><div dir="auto"><br></div><div dir="auto">- Thanks </div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Sep 19, 2022, 2:24 AM Matus Macik <<a href="mailto:matus.macik@evolveum.com" target="_blank" rel="noreferrer">matus.macik@evolveum.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div style="font-family:arial,helvetica,sans-serif;font-size:12pt;color:#000000"><div>Hello,</div><div><br></div><div>Currently this attribute is not supported in the connector schema. If you have your own fork with this implemented you can issue a pull request and after reviewing the feature we can merge the contribution. Or you can create an improvement Jira, these usually have higher priority when endorsed by a midPoint subscription. </div><div><br></div><div> <div style="color:#000000;font-family:arial,helvetica,sans-serif;font-size:16px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration-style:initial;text-decoration-color:initial">--<br></div><div style="color:#000000;font-family:arial,helvetica,sans-serif;font-size:16px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration-style:initial;text-decoration-color:initial">Best Regards,<br><br>Matus Macik | Developer and Identity Management Engineer<br><a href="mailto:matus.macik@evolveum.com" rel="noreferrer noreferrer" target="_blank">matus.macik@evolveum.com</a> | <a href="http://www.evolveum.com" rel="noreferrer noreferrer" target="_blank">www.evolveum.com</a><br>Evolveum</div> </div><hr id="m_-8194139432829573933m_5297305874332388337zwchr"><div><b>From: </b>"midPoint General Discussion" <<a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a>><br><b>To: </b>"midPoint General Discussion" <<a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a>><br><b>Cc: </b>"Marvel Krafts" <<a href="mailto:marvel.krafts@gmail.com" rel="noreferrer noreferrer" target="_blank">marvel.krafts@gmail.com</a>><br><b>Sent: </b>Sunday, September 18, 2022 3:09:47 AM<br><b>Subject: </b>[midPoint] Manager from Azure AD<br></div><div><br></div><div><div dir="ltr">Hello,<br><div>Maybe it's simple but does the Azure Graph connector support pulling the manager for an account? Azure User object does not have "manager" attribute by default but it can be pulled few ways when using the Graph API</div><br><div>1. Using GET on <span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap"><a href="https://graph.microsoft.com/v1.0/users/johnsmith@example.com?$expand=manager" rel="nofollow noopener noreferrer noreferrer noreferrer" target="_blank">https://graph.microsoft.com/v1.0/users/johnsmith@example.com?$expand=manager</a></span></div><div>2. Using GET on <span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap"><a href="https://graph.microsoft.com/v1.0/users/johnsmith@example.com?$expand=directReports" rel="nofollow noopener noreferrer noreferrer noreferrer" target="_blank">https://graph.microsoft.com/v1.0/users/johnsmith@example.com?$expand=directReports</a></span></div><div><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap">3. Using GET on </span><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap"><a href="https://graph.microsoft.com/v1.0/users/johnsmith@example.com/manager" rel="nofollow noopener noreferrer noreferrer noreferrer" target="_blank">https://graph.microsoft.com/v1.0/users/johnsmith@example.com/manager</a></span></div><div><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap"><br></span></div><div><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap">How can I fetch this?</span></div><div><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap"><br></span></div><div><span style="color:rgb(33,33,33);font-family:'inter','opensans','helvetica','arial',sans-serif;font-size:12px;white-space:pre-wrap">Thanks</span></div></div>
<br>_______________________________________________<br>midPoint mailing list<br><a href="mailto:midPoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midPoint@lists.evolveum.com</a><br><a href="https://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer noreferrer" target="_blank">https://lists.evolveum.com/mailman/listinfo/midpoint</a></div></div></div></blockquote></div>