Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Active Roles Sync Service 8.2 - Administration Guide

Synchronization Service overview Deploying Synchronization Service Deploying Synchronization Service for use with AWS Managed Microsoft AD Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Database Working with Oracle Database user accounts Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with an OpenLDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with IBM RACF Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Developing PowerShell scripts for attribute synchronization rules Using PowerShell script to transform passwords

Working with SharePoint

This section describes how to create or modify a connection to Microsoft SharePoint so that Synchronization Service could work with data in that data system.

To create a connection to Microsoft SharePoint, use the Sharepoint Connector of Active Roles Synchronization Service.

The SharePoint Connector supports the following features:

Table 54: SharePoint Connector – Supported features

Feature

Supported

Bidirectional synchronization

Specifies whether you can both read and write data in the connected data system.

Yes

Delta processing mode

Specifies whether the connection can process only the data that has changed in the connected data system since the last synchronization operation. This reduces the overall synchronization duration.

No

Password synchronization

Specifies whether you can synchronize user passwords from an Active Directory (AD) domain to the connected data system.

No

Creating a SharePoint connection

You can create a new SharePoint connection in the Synchronization Service Console.

To create a new SharePoint connection

  1. Ensure that you have installed the SharePoint Connector on the SharePoint server you want to work with.

  2. In the Synchronization Service Console, open the Connections tab.
  3. Click Add connection, then use the following options:
    • Connection name: Type a descriptive name for the connection.

    • Use the specified connector. Select SharePoint Connector.

  4. Click Next.

  5. To check that the connector can access SharePoint, on the Specify connection settings page, click the Test Connection.

  6. If the test succeeds, click Finish to create a connection.

SharePoint data supported for data synchronization

The following table lists the data objects and data operations supported by the SharePoint Connector.

Synchronization Service provides special attributes for each supported SharePoint object type, allowing you to read or write data in SharePoint. You can access and use these attributes from the Synchronization Service Console, for example, when selecting the source and target attributes to include in the synchronization operation.

Table 55: Supported objects and operations 

Object

Read

Create

Delete

Update

AlternateURL

Allows you to read data related to an incoming URL and the zone with which it is associated.

Yes

No

No

No

ClaimProvider

Allows you to read data related to a claim provider.

Yes

No

No

No

Farm

Allows you to work with a SharePoint farm.

Yes

No

No

No

Group

Allows you to work with a group on a SharePoint website.

Yes

Yes

Yes

Yes

Language

Allows you to work with a language used in SharePoint.

Yes

No

No

No

Policy

Allows you to work with a policy assigned to a user or group.

Yes

Yes

Yes

Yes

PolicyRole

Allows you to work with the rights possessed by a policy role.

Yes

Yes

Yes

Yes

Prefix

Allows you to work with a relative URL that determines segments of the URL under which sites may be created.

Yes

No

No

No

RoleAssignment

Allows you to work with role assignments for a user or group.

Yes

Yes

Yes

Yes

RoleDefinition

Allows you to work with a role definition, including name, description, management properties, and a set of rights.

Yes

Yes

Yes

Yes

Site

Allows you to work with site collections in an Internet Information Services (IIS) web application.

Yes

Yes

Yes

Yes

User

Allows you to work with a user in SharePoint.

Yes

Yes

Yes

Yes

Web

Allows you to work with a SharePoint website.

Yes

Yes

Yes

Yes

WebApplication

Allows you to work with an IIS load-balanced web application installed on a server farm.

Yes

No

No

Yes

WebTemplate

Allows you to work with a site definition configuration or a web template used to create SharePoint sites.

Yes

No

No

No

The following sections describe the attributes provided by Synchronization Service and describe what data you can read or write in SharePoint by using a particular attribute.

AlternateURL object attributes

In a SharePoint connection, the Synchronization Service supports the following attributes of the AlternateURL object with the following synchronization operations.

Table 56: AlternateURL object attributes

Attribute

Type

Description

Supported operations

Id

Single-valued, string

Gets the object ID.

Read

IncomingUrl

Single-valued, string

Gets the incoming URL that is associated with the zone from which the request originated.

Read

Parent

Single-valued, string, reference (WebApplication object)

Gets the parent of the object.

Read

Uri

Single-valued, string

Gets the incoming URL associated with the zone from which the request originated, in the form of an URI.

Read

UrlZone

Single-valued, string

Gets the zone that is associated with the alternate request URL.

Read

Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation