Dynamic Group Creation Failing

Question

I'm having an issue creating a dynamic group in Entra.

This is the rule I am trying to run: (user.assignedPlans -any (assignedPlan.capabilityStatus -eq "enabled")) -and (user.userPrincipalName -notIn ["quotefile@cibaservices.com", "policyfile@cibaservices.com", "metalogix@cibaservices.com", "LogNotes@cibaservices.com", "itmail@cibaservices.com", "gnc@cibaservices.com", ”edocketo365@cibaservices.com”, ”claimsfile@cibaservices.com”, ”claims@claimsadjustgrp.com”, ”CIBAQuote@cibaservices.com”, "admin@cibainsuranceservices.onmicrosoft.com"])

The issue is it states that it failed to create the dynamic group with no explanation.

I have narrowed it down to the second portion of the rule beginning with "-and" seems to be the issue because it works fine without it but this is not ideal because I need the requested users to be removed and you cannot manually delete them. I created the group and the rule ran fine without the second portion but upon trying to add the rule it says failed to create.

Please advise.

Thank you!

Answer

Hello @Nicholas

Thank you for sharing your issue on Microsoft Q&A.

I understand you are having issues creating users using the dynamic group rule.

The error in your dynamic rule is due to the use of curly quotation marks (”) instead of straight quotation marks ("). This can cause syntax errors in the rule. Here is the corrected version of your rule:

Kindly try testing out the rule below.

(user.assignedPlans -any (assignedPlan.capabilityStatus -eq "enabled")) -and (user.userPrincipalName -notIn ["quotefile@cibaservices.com", "policyfile@cibaservices.com", "metalogix@cibaservices.com", "LogNotes@cibaservices.com", "itmail@cibaservices.com", "gnc@cibaservices.com", "edocketo365@cibaservices.com", "claimsfile@cibaservices.com", "claims@claimsadjustgrp.com", "CIBAQuote@cibaservices.com", "admin@cibainsuranceservices.onmicrosoft.com"])

Thanks

Siri

Share via

Dynamic Group Creation Failing

1 answer

Your answer