What is required for Attribute Sync to work on a connected source?

For Attribute Sync to function correctly on a connected source, it is essential to define attribute mappings in the policy. This step is crucial because attribute mappings establish a relationship between the attributes in the connected source and those within SailPoint Identity Security Cloud. These mappings ensure that the right data is synchronized correctly, facilitating proper identity management and user provisioning. Without these defined mappings, the system would lack clarity on how to interpret and transfer the data, leading to unmapped or inaccurate attribute information.

In terms of the other options, ensuring user roles are correct is more related to the assignment of roles and permissions rather than the specific mechanics of attribute synchronization. Defining mappings is fundamental for Attribute Sync, while having no need for defined mappings would undermine the synchronization process. Additionally, while aggregation of attributes can be beneficial in some contexts, it is not a prerequisite for Attribute Sync to function. Thus, defining attribute mappings is pivotal for achieving effective and accurate synchronization.