Forum Discussion

PeterJ_Inobits's avatar
PeterJ_Inobits
Iron Contributor
Oct 20, 2020

Dynamic Security Groups based on the onpremisesDistinguishedName attribute

Hi to the community

Got an interesting question. I see that you can create dynamic security groups based on a large number of attributes including onpremisessecurityidentifier, I can see some use cases for that one 🙂

however it doesn't appear to be possible to create  dynamic group based on the onpremisesdistinguishedname 😞 Is this possible?

 

I did some reading about being able to consume custom attributes based on applicationID. Would this be a possible approach to investigate. If so does the AADConnect system even register an AppID and how would I go about locating it?

Thanks for any advice or pointers

 

Resources