Hi @Jeremy Ramsey , here's an example using AAD-UserWriteUsingAlternativeSecurityId
. If this doesn't work we can open a support ticket and see what's going on.
Add the following line to the AAD-UserWriteUsingAlternativeSecurityId
technical profile:
<PersistedClaim ClaimTypeReferenceId="accountEnabled" DefaultValue="true" />
This will set the accountEnabled
attribute to true
for all newly created accounts. Make sure to add this line within the PersistedClaims
element of the technical profile.
Here's an example of what the AAD-UserWriteUsingAlternativeSecurityId
technical profile should look like with the accountEnabled
attribute added:
<TechnicalProfile Id="AAD-UserWriteUsingAlternativeSecurityId">
<Metadata>
<Item Key="Operation">Write</Item>
<Item Key="RaiseErrorIfClaimsPrincipalAlreadyExists">true</Item>
</Metadata>
<PersistedClaims>
<PersistedClaim ClaimTypeReferenceId="alternativeSecurityId" />
<PersistedClaim ClaimTypeReferenceId="email" />
<PersistedClaim ClaimTypeReferenceId="newPassword" PartnerClaimType="password"/>
<PersistedClaim ClaimTypeReferenceId="displayName" />
<PersistedClaim ClaimTypeReferenceId="givenName" />
<PersistedClaim ClaimTypeReferenceId="surname" />
<PersistedClaim ClaimTypeReferenceId="objectId" />
<PersistedClaim ClaimTypeReferenceId="tenantId" />
<PersistedClaim ClaimTypeReferenceId="accountEnabled" DefaultValue="true" />
</PersistedClaims>
<OutputClaims>
<OutputClaim ClaimTypeReferenceId="objectId" />
<OutputClaim ClaimTypeReferenceId="newUser" PartnerClaimType="newClaimsPrincipalCreated" />
<OutputClaim ClaimTypeReferenceId="tenantId" AlwaysUseDefaultValue="true" DefaultValue="{Policy:TenantObjectId}" />
</OutputClaims>
<IncludeTechnicalProfile ReferenceId="AAD-Common" />
<UseTechnicalProfileForSessionManagement ReferenceId="SM-AAD" />
</TechnicalProfile>
Please let me know if you have any questions and I can help you further.
If this answer helps you please mark "Accept Answer" so other users can reference it.
Thank you,
James