Chatee ahora con Soporte
Chat con el soporte

Active Roles 7.4.3 - How-To Guide

Synchronization Service

Formerly a standalone product called Quick Connect, the Synchronization Service is now part of Active Roles 7.4.x.

With Synchronization Service, complete automation can be implemented to process data synchronization between the data systems.

Synchronization Service increases the data management efficiency by allowing automation of the creation, deprovision, and update operations between data systems. For example, when an employee joins or leaves the organization, the related information in the data systems managed by Synchronization Service is automatically updated, thereby reducing the administrative workload and getting the new users up and running faster.

In order to synchronize identity data between external data systems, Synchronization Service must be configured to connect to these data systems through connectors. A connector enables Synchronization Service to access specific data system to read and synchronize data in that system according its settings. Out of the box, Synchronization Service includes a number of built-in connectors:

  • Active Roles versions 7.4.x, 7.3, 7.2.x, 7.1, 7.0 and 6.9
  • Identity Manager version 8.1, 8.0, or 7.0
  • Quest One Identity Manager version 6.1 or 6.0
  • Delimited text files
  • Microsoft Active Directory Domain Services
  • Microsoft Active Directory Lightweight Directory Services
  • Microsoft Azure Active Directory
  • Microsoft Exchange Server
  • Microsoft Skype for Business Server
  • Microsoft Office 365
  • Microsoft SharePoint
  • Microsoft SQL Server
  • OLE DB-compliant relational database
  • Generic LDAP Directory service

  • MY SQL Database

  • OpenLDAP Directory service

  • Salesforce
  • ServiceNow
  • IBM DB2 Database
  • IBM RACF Connector
  • Oracle Unified Directory Connector

  • Oracle Database User Accounts Connector

  • Oracle Database Connector

  • Micro Focus NetIQ Directory Connector

  • IBM AS/400 Connector

Figure 1: Technical Overview

Capture Agent

Synchronization Service Capture Agent allows password synchronization between Active Directory domains managed by Synchronization Service and other connected data systems. The following diagram shows how the Password Synchronization feature of Synchronization Service works:

Figure 2: Password Synchronization

Capture Agent tracks changes to user passwords in the source Active Directory domain and provides that information to Synchronization Service, which in turn synchronizes the changes with target connected data systems by using the configured password synchronization rules. To synchronize passwords, install a Capture Agent on each domain controller in the Active Directory source domain.

Upgrade from Quick Connect

If Quick Connect is configured with synchronization workflows that contain similar connector in Synchronization Service, then those synchronization workflows can be transferred to Synchronization Service.

The following synchronization workflows can be transferred from the following Quick Connect versions:

  • Quick Connect Sync Engine 5.2.0, 5.3.0, 5.4.x, or 5.5
  • Quick Connect Express for Active Directory 5.3.0, 5.4.0, 5.4.1, or 5.5.0
  • Quick Connect for Cloud Services 3.3.0, 3.4.0, or 3.5.0
  • Quick Connect for Base Systems 2.2.0 or 2.3.0

Limitations

Synchronization Service is unable to run synchronization workflows that employ connections to the following systems:

  • ActiveRoles Server 6.5
  • Google Apps
  • Novell eDirectory
  • ODBC-compliant data source
  • OpenDS directory service
  • Oracle Database
  • Oracle User Accounts
  • PeopleSoft HCM
  • Red Hat Directory Server
  • SAP Systems
  • Sun One Directory Server
  • Workday

If it is necessary to synchronize data held in these systems, continue using Quick Connect as not all connectors provided by Quick Connect are included with Synchronization Service. Alternatively, One Identity Manager may support these systems.

Documentos relacionados