Link an Unmanaged Account to an Person in the Entitlement Import Report
planned
R
Rick van den Dijssel
Enable manual linking of an unmanaged account (not currently matched via correlation or as account entitlement in system) to a person when processing an entitlement import report. This facilitates future automatic matching through updated correlation values.
- Manual Selection of Unmanaged Accounts
Allow users to manually select an unmanaged account from the entitlement import report when:
- A person should have an account entitlement, but no matching account is found based on the correlation value. Also when we found mulitple macthing accounts.
- There exists a potential unmanaged account not currently linked or managed to another person.
- Search on account username & displayname as returned in import account data script.
- Allow to edit/clear the manual selected account up until the entitlement import is executed
- Add extra filtering state “manually matched”
- Link and Import Action
Upon selection:
- The unmanaged account is imported and granted to the selected person.
- The system should perform an update acount on the imported account, setting the account correlation value (e.g., username, employee ID) to match the person’s correlation property value.
- When account is selected update the view with account access and permissions that will be imported
When a manual selection for an account has been made then add warning uppon recreate report for the import of entitlements:
- Export import entitlement report
- Add manually selected state and other states to report
- Effect on Future Imports
This linkage ensures that:
- On the next entitlement import run, the previously unmanaged account is now recognized and automatically matched to the correct person.
- Remove correlation reports from AD & Azure AD builtin target systems
Use Case Example
Person John Doe should have an account entitlement, but no matching account is found.
An unmanaged account jdoe123 exists in the source system but the correlation value of the account doesn’t matched the person correlation value.
Admin manually selects jdoe123 to link to John Doe.
The account is imported, the correlation value (e.g., username) is updated to jdoe123, and the account is linked to John Doe.
When all account entitlements are unmanaged on the next entitlement report, the system automatically matches jdoe123 to John Doe.
R
Rick van den Dijssel
We will remove the correlation reports from (AD, Azure AD target systems) because the entitlement import report exceeds the functionality of the correlation report.
R
Rick van den Dijssel
planned
Planned September release