We are facing below issues in AD driver
1. As in AD driver we can defined only one user container (OU/Group) , and we can only migrate the users and Groups that are in that OU. Our Query is that we want to sych all user and OU of AD outside the OU which specified in the Driver , so how can we achieve this . Should we have to define Main ou of AD???
For Ex: - We have AD which have 3 OU’s (SOC,NOC,Consultant) and they have their own users . In AD driver we have configured only Consultant OU, so we are able to Create\migrate\deletion the users from that OU only. To migrate and sych all OU’s and Users of AD, Then how can we achive this ?? What type of Configuration we have to do in AD Driver .
2. As when we enable the entitlement to True after that when we migrate the users from AD to IDVault , it will not migrate it gives us below error
Veto out of the scope events
And when we false the entitlement user are migrated to ID vault . And Also when it false then user not moving to groups in AD. For user movement to AD Groups we need to set the entitlement to true.
We want to achieve that user are migrate into IDVault and Also user will move to AD groups
We also try with installation role based entitlement driver and also created entitlement user/Groups but we are facing the same issues still.