Skip to content

Commit 2882905

Browse files
Update known-issues.md
1 parent 4093689 commit 2882905

File tree

1 file changed

+7
-3
lines changed

1 file changed

+7
-3
lines changed

articles/active-directory/app-provisioning/known-issues.md

Lines changed: 7 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ ms.service: active-directory
99
ms.subservice: app-provisioning
1010
ms.workload: identity
1111
ms.topic: troubleshooting
12-
ms.date: 07/07/2021
12+
ms.date: 11/18/2021
1313
ms.reviewer: arvinh
1414
---
1515

@@ -116,8 +116,8 @@ The following attributes and objects aren't supported:
116116
- Reference attributes (for example, manager).
117117
- Groups.
118118
- Complex anchors (for example, ObjectTypeName+UserName).
119-
- On-premises applications are sometimes not federated with Azure AD and require local passwords. The on-premises provisioning preview *doesn't support provisioning one-time passwords or synchronizing passwords* between Azure AD and third-party applications.
120-
- The **export_password** virtual attribute, **SetPassword**, and **ChangePassword** operations aren't supported.
119+
- Binary attributes.
120+
- On-premises applications are sometimes not federated with Azure AD and require local passwords. The on-premises provisioning preview does not support password synchronization. Provisioning one-time passwords is supported. Please ensure that you are using the [Redact](https://docs.microsoft.com/azure/active-directory/app-provisioning/functions-for-customizing-application-data#redact) function to redact the passwords from the logs. The passwords are not exported on the initial call to the application, but rather a second call with set password.
121121

122122
#### SSL certificates
123123
The Azure AD ECMA Connector Host currently requires either an SSL certificate to be trusted by Azure or the provisioning agent to be used. The certificate subject must match the host name the Azure AD ECMA Connector Host is installed on.
@@ -128,5 +128,9 @@ The following attributes and objects aren't supported:
128128
#### Attribute discovery and mapping
129129
The attributes that the target application supports are discovered and surfaced in the Azure portal in **Attribute Mappings**. Newly added attributes will continue to be discovered. If an attribute type has changed, for example, string to Boolean, and the attribute is part of the mappings, the type won't change automatically in the Azure portal. Customers will need to go into advanced settings in mappings and manually update the attribute type.
130130

131+
#### Provisioning agent
132+
- The agent does not currently support auto update for the on-prem application provisioning scenario. We are actively working to close this gap and ensure that auto update is enabled by default and required for all customers.
133+
- The same provisioning agent cannot be used for on-prem app provisioning and cloud sync / HR- driven provisioning.
134+
131135
## Next steps
132136
[How provisioning works](how-provisioning-works.md)

0 commit comments

Comments
 (0)