Interesting. That feels like the query which had no root object or object reference returning an error about a missing object reference. I am not sure how to fix it, well, maybe... Consider how the EntitlementConfiguration object looks and how the query is defined there.
Hmm, my last Azure driver had this:
<entitlement data-collection="true" dn="CN=Role,CN=AzureDev2,CN=DriverSet,OU=idm,dc=acme,dc=net" parameter-format="idm4" resource-mapping="true" role-mapping="true">
<type category="role" id="role" name="role">
<parameter mandatory="true" name="ID" source="read-attr" source-name="objectId"/>
<query class-name="DirectoryRole" scope="subtree">
That seems to suggest a query from root (or absence of a DN).
Not sure that is helpful, sorry.
I would guess somehow ExchangeSevice do not get "domain" names correctly as method parameter;
But again what roles these are ? If i turn off Exchange Service, Azure AD Driver works fine and all the AzureAD directoryRoles just works as normal issues. Why hack its querying Roles? 🙂 and what Roles are these?
I have this is ony GCVS seen from Imanager ( i have trimmed the Diverset and servers names for confidentiality) and I have alos removed "Roles" Entitlement query, just to try, but same behavior as with
Looks like the AZureAD patch 184.108.40.206 fixes this,
- Bug 1145835 - The driver does not fail to start anymore when Exchange service is enabled and Exchange online is disabled
Tracing it out, the Shim sends a <init-params> then the RL starts the Main() class. This then starts Sub/Pub channels. Then it starts two sub drivers, both REST, one for Graph API and the second for ExchService.
It queries Azure for SKUs, DirectoryRoles. Then it queries ExchangeService for Roles and that is where it died.
I am trying to get more info on the above bug, but it seems like this is the fix for the issue, since the Roles query fails. Once you patch it, it succeeds.
And Geez, this patch came out April 1, 2020.
Also if you change your settinsg you would get this to work. But just not in that one configuration.