All geek questions in one place

AzureAD SCIM integration does not send DELETE requests

I implemented the SCIM API and integrated it with Azure.

When I delete a user in AzureAD, it does not send DELETE requests. I tried to remove from the application as well as from the directory.

Get users / [userID], Get request and POST / Users are working fine. I also receive PATCH requests, but since I did not implement PATCH, 404 is returned.

  • Why doesn't it send DELETE requests? According to Azure AD SCIM, Documentation must send DELETE requests.

  • How AzureAD tracks the user’s β€œId” attribute sent by the SCIM service is from the β€œID” attribute of the SCIM response or using the Uri in the Meta / Location attribute. The reason for this question is that when I delete a user in AzureAD, how does it recognize the user Id.

+5
source share
1 answer

To answer the first question, Azure Access Services only sends a DELETE request after a user has been removed from Azure AD.

This contains additional information on how to uninstall in Azure AD:

https://david-obrien.net/2014/12/recover-deleted-users-azure-active-directory/

http://www.exchangeitpro.com/2016/10/20/permanently-delete-user-from-office-365-all-you-need-to-know/

If the user is removed from the portal, he enters a state with soft deletion. They remain in this state for 30 days, after which they are difficult to remove.

The Azure AD Access Service will send a request to the application to disconnect the account when the user uninstalls the software in Azure AD.

Upon final hard removal, Azure AD sends a request to the application to REMOVE the user.

0
source

Source: https://habr.com/ru/post/1265468/

More articles:


All Articles