Mapping multiple AD Security Groups with Multiple Roles

%3CLINGO-SUB%20id%3D%22lingo-sub-2724719%22%20slang%3D%22en-US%22%3EMapping%20multiple%20AD%20Security%20Groups%20with%20Multiple%20Roles%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2724719%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20All%2C%3C%2FP%3E%3CDIV%3EThere%20are%20~1000%20AD%20Security%20Groups%20and%20all%20those%20Groups%20has%20a%20Role%20Assigned%20to%20it.%20(Those%20Roles%20are%20managed%20by%20Saviynt%20Identity%20Solution)%20.%20The%20Enterprise%20App%20which%20we%20are%20now%20trying%20to%20federate%20via%20Azure%20AD%20is%20Authorizing%20the%20User%20by%20identifying%20those%20roles.%20(Those%20roles%20are%20hardcoded%20in%20the%20App%20to%20Authorize%20the%20User).%20So%20what%20I%20wanted%20to%20do%20is%20I%20have%20to%20map%20~1000%20AD%20Groups%20with%20the%20~1000%20Roles%20(These%20roles%20I%20have%20already%20created%20in%20App%20Registration%20for%20the%20Enterprise%20App)%20however%20I%20am%20still%20trying%20to%20figure%20out%20the%20Mapping%20of%20these%20AD%20Groups%20with%20the%20Roles%20in%20Users%20and%20Groups%20option%20(highlighted%20in%20the%20screenshot)%3C%2FDIV%3E%3CDIV%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22samchak2021_0-1630932302752.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F308319i427DC85885723C5E%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22samchak2021_0-1630932302752.png%22%20alt%3D%22samchak2021_0-1630932302752.png%22%20%2F%3E%3C%2FSPAN%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20know%20how%20to%20do%20the%20Mapping%20one%20by%20one%20however%20doing%20more%20than%201000%20groups%20with%201000%20role%20would%20be%20very%20cumbersome%20work%20so%20I%20need%20some%20kind%20of%20script%20or%20automation%20help.%3C%2FP%3E%3CP%3EThanks%20in%20Advance.%3C%2FP%3E%3CP%3ESam%3C%2FP%3E%3C%2FDIV%3E%3C%2FLINGO-BODY%3E
New Contributor

Hi All,

There are ~1000 AD Security Groups and all those Groups has a Role Assigned to it. (Those Roles are managed by Saviynt Identity Solution) . The Enterprise App which we are now trying to federate via Azure AD is Authorizing the User by identifying those roles. (Those roles are hardcoded in the App to Authorize the User). So what I wanted to do is I have to map ~1000 AD Groups with the ~1000 Roles (These roles I have already created in App Registration for the Enterprise App) however I am still trying to figure out the Mapping of these AD Groups with the Roles in Users and Groups option (highlighted in the screenshot)
samchak2021_0-1630932302752.png

 

I know how to do the Mapping one by one however doing more than 1000 groups with 1000 role would be very cumbersome work so I need some kind of script or automation help.

Thanks in Advance.

Sam

0 Replies