Chat now with support
Chat mit Support

Identity Manager 8.1 - Administration Guide for Connecting to Cloud Applications

Synchronizing Cloud Applications through the Universal Cloud Interface Setting up Synchronization with a Cloud Application Base Data for Managing Cloud Applications Cloud Applications Container Structures in a Cloud Application User Accounts in a Cloud Application Groups in a Cloud Application Permissions Controls in a Cloud Application Provisioning Object Changes Managing Provisioning Processes in the Web Portal Additional Information for Experts Appendix: Default Project Template for Cloud Applications

Viewing all Provisioning Processes

You can view all provisioning processes in the Web Portal as an auditor. This means, you can see closed and pending provisioning processes. You cannot edit pending provisioning processes.

To view provisioning processes

  1. Open Cloud operations

    This displays pending and closed provisioning processes in descending date order.

  2. Mark the process and view the relevant information in the operation detail.

Viewing Statistics

Statistics about provisioning processes are displayed on the Web Portal's start page and are visible for administrators, operators, and auditors. The number of pending provisioning processes are displayed in chronological order in the statistics. The timeline consists of point that represent each respective date and can be clicked on. Mouse over a point on the timeline to display a tooltip showing information about the pending processes on this tag.

To view statistics

  1. Double-click on a point in the timeline.

    This opens a window with an enlarged visual. which makes the data for each point in the timeline viewable.

  2. Mouse over the date above the point to you want to know about.

    The number of processes for this date are displayed.

  3. Allow all processes with values to be displayed in decreasing chronological order.
    1. Click to the link Help.
    2. Select tab page View source data.

Additional Information for Experts

When you set up synchronization with a cloud application, One Identity Manager uses the SCIM schema exported from the server. If the SCIM connector cannot find the schema, you can pass it the schema data by using override files. The override files contain a complete description of the schema being used and they must confirm to the SCIM Core Schema specification (RFC 7643).

To configure synchronization with override files

  1. Start the Synchronization Editor.
  2. Enable expert mode.
  3. Set up an initial synchronization project. For more information, see Creating a synchronization project for initial synchronization of a cloud application. The following special features apply:
    1. On the Expert settings page, you define whether you want to make additional settings. setting Show schema settings.
    2. Enter the path for the override files on the Schema definition page. Both files must exist.
      Table 34: Information about override files
      Property Description
      Schema override file Contains the full schema definition of the cloud application.
      Resource configuration override file Contains the full resource definition of the cloud application.
      • To check the override files for errors, click Check.

IMPORTANT: If override file are given in the synchronization configuration files they replace a schema definition on the server.

Schema definitions from override files are saved as connection parameters (DPRSystemConnection.ConnectionParameter).

You must make any changes to the SCIM schema in the override files, which must then be reloaded into the synchronization project.

To add schema changes to the synchronization project

  1. Update the schema definition in the override files.
  2. Open the synchronization project in the Synchronization Editor.

  3. Enable expert mode.
  4. Select the category Configuration | Target systems.
  5. Select General and click Edit connection...

    This starts the system connection wizard.

  6. Enter the path for the override files on the Schema definition page.
  7. End the system connection wizard.

    This updates the connection parameters.

  8. Select the view General and click Update schema.
  9. Confirm the security prompt with Yes.
  10. Save the changes.

If the server has a valid schema definition because of later changes, for example, the override files' schema must be removed from the connection parameters.

To remove the override file's schema and apply the server's schema definition

  1. Open the synchronization project in the Synchronization Editor.

  2. Enable expert mode.
  3. Select the category Configuration | Target systems.
  4. Select General and click Edit connection...

    This starts the system connection wizard.

  5. Select the Endpoint Configuration page and enter the URIs for the SCIM end points. Use the SCIM base schema if no URIs are given.
  6. Select Schema definition and click Clear existing for both the schema override file and the resource configuration override file.
  7. End the system connection wizard.
  8. Select the view General and click Update schema.
  9. Confirm the security prompt with Yes.
  10. Save the changes.

Appendix: Default Project Template for Cloud Applications

A default project template ensures that all required information is added in One Identity Manager. This includes mappings, workflows and the synchronization base object. If you do not use a default project template you must declare the synchronization base object in One Identity Manager yourself.

Use a default project template for initially setting up the synchronization project. For custom implementations, you can extend the synchronization project with the Synchronization Editor.

The template uses mappings for the following schema types.

Table 35: Mapping SCIM schema types to tables in the One Identity Manager schema.
SCIM schema type Table in the One Identity Manager Schema
Group UCIGroup
User UCIUser
Verwandte Dokumente