question

VinayKumarGupta-9387 avatar image
0 Votes"
VinayKumarGupta-9387 asked ·

Azure AD to Oracle IDCS user deletion not flowing

Hi,

I have configured the federation and auto user provisioning between Azure AD and Oracle IDCS.

User creation, modification data is flowing from Azure AD to Oracle IDCS but deletion is not flowing.

It is failing with below reason:

["urn:ietf:params:scim:api:messages:2.0:Error","urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"],"detail":"An invalid data type was provided for the attribute : active. The expected data type is 'boolean'. The provided data type is [ string,dateTime,binary,reference ].","status":"400","urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{"messageId":"error.common.validation.invalidAttributeType"}}. This operation was retried 0 times. It will be retried again after this date: 2020-05-09T11:37:06.2324767Z UTC

I checked the attribute mapping, for attribute 'active', datatype is already boolean.

Please suggest if it is working for someone.

Thanks.

azure-active-directory
· 5
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Can you please provide the screenshot of "Active" attribute under Mappings sections of your application ?

0 Votes 0 · ·

so, it is not computed but a direct assignment. Are you using Oracle IDCS for E-business Suite ? I am checking on this internally and will let you know if anything is required from you.

0 Votes 0 · ·

Hi Saurabh,

I have created Oracle IDCS as non-gallary application.

Thanks & Regards,
Vinay

0 Votes 0 · ·
Show more comments

1 Answer

Rahul-7230 avatar image
0 Votes"
Rahul-7230 answered ·

Hi All,

There was an issue with Microsoft SCIM I raised a premium case with MS and they fixed the issue from backend. For me also Hard Delete was not working.

After raising incident with MS support hard delete started working back. Last week only it got fixed you may try now.

Regards,
Rahul

· 4 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi Rahul,

I deleted a new user in Azure AD but it didn't get processed to IDCS.
It is failing with same reason:
["urn:ietf:params:scim:api:messages:2.0:Error","urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error"],"detail":"An invalid data type was provided for the attribute : active. The expected data type is 'boolean'. The provided data type is [ string,dateTime,binary,reference ].","status":"400","urn:ietf:params:scim:api:oracle:idcs:extension:messages:Error":{"messageId":"error.common.validation.invalidAttributeType"}}. This operation was retried 0 times. It will be retried again after this date: 2020-05-23T14:23:25.6454389Z UTC

Please let me know if I have to make any change in my setup.

Best Regards,
Vinay

0 Votes 0 · ·
Rahul-7230 avatar image Rahul-7230 VinayKumarGupta-9387 ·

Hi Vinay,

I had different issue where Hard Delete itself was not working from MS side.

May I know which Delete you performed for the end user Soft Delete or Hard Delete ?

Soft Delete are always treated as DISABLED state. Reference Link: https://docs.microsoft.com/en-us/azure/active-directory/app-provisioning/how-provisioning-works#de-provisioning

Hard Delete are treated as DELETE.

Just notice the behavior. One more thing Hard Delete never sends any boolean value. Boolean value are always send in Soft Delete operation. Check the Application Audit Logs for both cases Hard Delete / Soft Delete and Activity Type = Export in that you will have a TAB Modified Property see the values updated.






0 Votes 0 · ·

Hi Rahul,

I am doing Hard Delete but it is considering it as soft delete event.
I have attached the screenshot too. Please check and suggest.

8731-ad-user-deletion-error.jpg




Thanks.

0 Votes 0 · ·
Show more comments