We are running the Automation to leverage User Provisioning in our Oracle Fusion ERP System. This works well to take the user from Azure/Entra, and uses the group mappings in the Identity Domain in OCI to map to the Fusion Roles within Oracle Fusion. For context, this was configured using. https://blogs.oracle.com/cloud-infrastructure/post/role-based-provisioning-from-oracle-fusion-application-to-idcs-v2
Our Issue - This only occurs when lower environments (dev, test, uat) are refreshed. Production does not have this issue as it is not refreshed.
After an environmental refresh in the lower environments the mappings are lost within the Identity Domain Connector and then have to go one by one and Revoke Data access on the Azure group and then remap to the Fusion Group. The reason is this process of refresh loses the mappings. I have opened an SR on this but they were not able to assist.
Has anyone else encountered this? Is there a process or job that needs to be run to prevent this? Or is it an unfortunate bug that requires going in to remap the Azure AD Group to the Fusion Role within the Identity Domain configured to do the sync each time?
Thanks in advance.