Identity Manager 8.1 - Administration Guide for Connecting to Native Databases through Database Systems Integration Module

Database Systems Integration Module Installing DSI Working with Oracle Database Working with MSSQL Working with SAP HANA Troubleshooting

Provisioning workflow for database-level objects

Provisioning workflow for database-level objects

The Provisioning workflow for database-level objects is used to create, update, delete MS SQL users, and update database-role membership.

Creating a Microsoft SQL user

Creating a Microsoft SQL user

You can create SQL USER WITHOUT LOGIN, SQL USER WITH LOGIN, WINDOWS USER, WINDOWS GROUP, and SQL USER WITH PASSWORD types of users in MS SQL Server.

IMPORTANT:

  • The SQL user is created and automatically mapped to the login with the same username if it exists, or else a new login is created.

  • A login is not required to access the SQL server for SQL USER WITH PASSWORD. These users are only applicable to a contained database.

  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts. To view the target system name, expand the required target system root.
  3. Click Add.
  4. Provide the required username in the Name text field.

NOTE: For WINDOWS LOGIN and WINDOWS GROUP, the user name must be in the <domain\username> format.

  1. Provide a password in the Password text field. Entering a password is applicable only for SQL USER WITH LOGIN and SQL USER WITH PASSWORD users. If not provided, the value from the DefaultUserPassword variable is used.

NOTE: For SQL USER WITH LOGIN, the password text field is used only for login creation.

  1. Select one of the following options, SQL USER WITHOUT LOGIN, SQL USER WITH LOGIN, WINDOWS USER, WINDOWS GROUP, or SQL USER WITH PASSWORD as a login category to proceed with the process.
  2. Click Save.

    A MS SQL user is created successfully.

Updating attributes of a Microsoft SQL user

Updating attributes of a Microsoft SQL user

The following topic briefs about the procedure to change password, lock user, unlock users, and change role membership.

To change the password:
  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts.
  3. In Custom target system, select the user to be updated.
  4. Provide the new password in the Password text field.
  5. Click Save.

    The password is updated.

To lock or unlock users:
  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts.
  3. In Custom target systems, select the user to be updated.
  4. Select the User account is disabled check box to lock or unlock the user.

    The user is locked or unlocked based on the action.

To change role membership:
  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts.
  3. In Custom target system, select the user to be updated.
  4. From the Assign Groups section, add or remove groups to update the role membership.

    The role membership is updated.

 

Deleting a Microsoft SQL user

Deleting a Microsoft SQL user

The following procedure describes how to delete an SQL user.

To delete a MS SQL user

  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts.
  3. In Custom target systems, select the user and click Delete.

The user account is disabled immediately on the MS SQL database based on deferred deletion value of the UNSAccountB table in One Identity Manager.

Verwandte Dokumente