we are able to enable the Azure AD sync and search for the Azure AD contacts from Rainbow by following the article [ article : Synchronize the company with an Active Directory – Rainbow Help Center (openrainbow.com) ]
However, the customers concern is even after performing the AD Sync with Rainbow we need to manually Add (for new users) or remove the Rainbow contacts for the users who have left the organization. From the customer's point of view they have to perform additional steps for adding or removing the contacts in AD and also remove or add users in the Rainbow using Mass Provisioning. Hence, the customer would like to have a new Feature like if a new User is deleted in AD, then the Rainbow contacts needs to be deleted automatically. Because the user is not present in the Azure AD anymore (without performing the steps in the Bulk Provisioning article. [ Article :
Just a suggestion: Is it possible to provision or remove a Rainbow user based on the AD user Objects in an Azure AD OU ?
For example : May be we could ask the customer to create a new OU ("ALE Rainbow") in Azure AD with Read, Write (Remove) rights on the Azure AD for the Rainbow application in their Azure AD domain. And then during the Rainbow and AD Sync step allow the Rainbow application to read and write to that particular OU ("ALE Rainbow") Rainbow alone and use the mass provisioning concept in the backend. Thus, the Rainbow accounts can be created or deleted based on the accounts present in the OU (ALE - Rainbow). But Read only functions to search for all the AD contacts in all the OU's in the customer's Azure AD domain.
Please ignore if this suggestion is not serving the purpose and if you have any different way to implement the customer's requirement.
Please sign in to leave a comment.