Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Active Roles 7.6.3 - Synchronization Service Administration Guide

Synchronization Service Overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with an OpenLDAP directory service Working with IBM RACF connector Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use
About scenarios Scenario 1: Create users from a .csv file to an Active Directory domain Scenario 2: Use a .csv file to update user accounts in an Active Directory domain Scenario 3: Synchronizing data between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 4: Deprovisioning between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 5: Provisioning of Groups between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 6: Enabling Delta Sync mode between One Identity Manager Custom Target Systems and an Active Directory domain Example of using the Generic SCIM Connector for data synchronization
Appendix A: Developing PowerShell scripts for attribute synchronization rules Appendix B: Using a PowerShell script to transform passwords

Working with SharePoint

This section describes how to create or modify a connection to Microsoft SharePoint so that Synchronization Service could work with data in that data system.

To create a connection to SharePoint, you need to use Synchronization Service in conjunction with a connector called SharePoint Connector. You must install this connector on the SharePoint server you want to work with. The SharePoint connector is included in the Synchronization Service package.

The SharePoint Connector supports the following features:

 

Table 69: Supported features

Feature

Supported

Bidirectional synchronization

Allows you to read and write data in the connected data system.

Yes

Delta processing mode

Allows you to process only the data that has changed in the connected data system since the last synchronization operation, thereby reducing the overall synchronization operation time.

No

Password synchronization

Allows you to synchronize user passwords from an Active Directory domain to the connected data system.

No

In this section:

Creating a SharePoint connection

To create a new connection

  1. Ensure that you have installed the SharePoint Connector on the SharePoint server you want to work with.
  2. In the Synchronization Service Administration Console, open the Connections tab.
  3. Click Add connection, and then use the following options:
    • Connection name. Type a descriptive name for the connection.
    • Use the specified connector. Select SharePoint Connector.
  4. Click Next.
  5. On the Specify connection settings page, click the Test Connection button to ensure that the connector can access SharePoint.
  6. If the test succeeds, click Finish to create a connection.

SharePoint data supported out of the box

The next table lists the objects supported by the SharePoint Connector out of the box and the operations you can perform on these objects by using the connector.

For each of the supported SharePoint object types Synchronization Service provides special attributes that allow you to read or write data in SharePoint. You can access and use these attributes from the Synchronization Service Administration Console (for example, when selecting the source and target attributes you want to participate in the synchronization operation).

 

Table 70: Supported objects and operations 

Object

Read

Create

Delete

Update

AlternateURL

Allows you to read data related to an incoming URL and the zone with which it is associated.

Yes

No

No

No

ClaimProvider

Allows you to read data related to a claim provider.

Yes

No

No

No

Farm

Allows you to work with a SharePoint farm.

Yes

No

No

No

Group

Allows you to work with a group on a SharePoint Web site.

Yes

Yes

Yes

Yes

Language

Allows you to work with a language used in SharePoint.

Yes

No

No

No

Policy

Allows you to work with a policy assigned to a user or group.

Yes

Yes

Yes

Yes

PolicyRole

Allows you to work with the rights possessed by a policy role.

Yes

Yes

Yes

Yes

Prefix

Allows you to work with a relative URL that determines segments of the URL under which sites may be created.

Yes

No

No

No

RoleAssignment

Allows you to work with role assignments for a user or group.

Yes

Yes

Yes

Yes

RoleDefinition

Allows you to work with a role definition, including name, description, management properties, and a set of rights.

Yes

Yes

Yes

Yes

Site

Allows you to work with site collections in a IIS Web application.

Yes

Yes

Yes

Yes

User

Allows you to work with a user in SharePoint.

Yes

Yes

Yes

Yes

Web

Allows you to work with a SharePoint Web site.

Yes

Yes

Yes

Yes

WebApplication

Allows you to work with an Internet Information Services (IIS) load-balanced Web application installed on a server farm.

Yes

No

No

Yes

WebTemplate

Allows you to work with a site definition configuration or a Web template used to create SharePoint sites.

Yes

No

No

No

The next sections describe the attributes provided by Synchronization Service and explain what data you can read or write in SharePoint by using a particular attribute.

In the next sections:

AlternateURL object attributes

 

Table 71: AlternateURL object attributes

Attribute

Type

Description

Supported operations

Id

Single-valued, string

Gets the object’s ID.

Read

IncomingUrl

Single-valued, string

Gets the incoming URL that is associated with the zone from which the request originated.

Read

Parent

Single-valued, string, reference (WebApplication object)

Gets the object’s parent.

Read

Uri

Single-valued, string

Gets the incoming URL associated with the zone from which the request originated, in the form of an URI.

Read

UrlZone

Single-valued, string

Gets the zone that is associated with the alternate request URL.

Read

Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation