Chatta subito con l'assistenza
Chat con il supporto

Identity Manager 8.1.5 - Administration Guide for Connecting to SharePoint

Managing SharePoint environments Setting up SharePoint farm synchronization Basic data for managing a SharePoint environment SharePoint farms SharePoint web applications SharePoint site collections and sites SharePoint user accounts SharePoint roles and groups
SharePoint groups SharePoint roles and permission levels
Permissions for SharePoint web applications Reports about SharePoint site collections Configuration parameters for managing a SharePoint environment Default project template for SharePoint

Deleting an account definition

You can delete account definitions if they are not assigned to target systems, employees, hierarchical roles or any other account definitions.

To delete an account definition

  1. Remove automatic assignments of the account definition from all employees.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Select the Change master data task.

    4. On the General tab, disable the Automatic assignment to employees option.

    5. Save the changes.

  2. Remove direct assignments of the account definition to employees.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Select the Assign to employees task.

    4. In the Remove assignments pane, remove the employees.

    5. Save the changes.

  3. Remove the account definition's assignments to departments, cost centers, and locations.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Select the Assign organizations task.

    4. In the Remove assignments pane, remove the relevant departments, cost centers, and locations.

    5. Save the changes.

  4. Remove the account definition's assignments to business roles.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Select the Assign business roles task.

      In the Remove assignments pane, remove the business roles.

    4. Save the changes.

  5. If the account definition was requested through the IT Shop, it must be canceled and removed from all IT Shop shelves.

    For more detailed information about unsubscribing requests, see the One Identity Manager Web Portal User Guide.

    To remove an account definition from all IT Shop shelves

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions (non role-based login) category.

      - OR -

      In the Manager, select the Entitlements | Account definitions (role-based login) category.

    2. Select an account definition in the result list.
    3. Select the Remove from all shelves (IT Shop) task.
    4. Confirm the security prompt with Yes.
    5. Click OK.

      The account definition is removed from all shelves by the One Identity Manager Service. At the same time, any requests and assignment requests with this account definition are canceled.

  6. Remove the required account definition assignment. As long as the account definition is required for another account definition, it cannot be deleted. Check all the account definitions.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Select the Change master data task.

    4. From the Required account definition menu, remove the account definition.

    5. Save the changes.

  7. Remove the account definition's assignments to target systems.

    1. In the Manager, select the site collection in the SharePoint | Site collections category.

    2. Select the Change master data task.

    3. On the General tab, remove the assigned account definitions.

    4. Save the changes.

  8. Delete the account definition.

    1. In the Manager, select the SharePoint | Basic configuration data | Account definitions | Account definitions category.

    2. Select an account definition in the result list.

    3. Click to delete an account definition.

SharePoint farms

NOTE: The Synchronization Editor sets up the farms in the One Identity Manager database.

To edit the master data of a farm

  1. Select the SharePoint | Farms category.
  2. Select the farm in the result list. Select the Change master data task.
  3. Edit the farm's master data.
  4. Save the changes.

General master data for a SharePoint farm

Enter the following master data for a farm.

Table 15: General master data for a farm
Property Description
Name Name of the SharePoint instance port. A distinguished name for internal user is formed from this.
Domain Name of the Active Directory or LDAP domain that is serves as security provider for SharePoint The user accounts and groups that are referenced are searched for in this domain.
Display name The farm's display name.
Target system managers Application role in which target system managers are specified for the farm. Target system managers only edit the objects from farms that are assigned to them. Each farm can have a different target system manager assigned to it.

Select the One Identity Manager application role whose members are responsible for administration of this farm. Use the button to add a new application role.

Synchronized by

Type of synchronization through which data is synchronized between the farm and One Identity Manager. As soon as objects for this farm are available in One Identity Manager, the type of synchronization can no longer be changed.

When you create a farm with the Synchronization Editor, One Identity Manager is used.

Table 16: Permitted values
Value Synchronization by Provisioned by
One Identity Manager SharePoint connector SharePoint connector
No synchronization none none
NOTE: If you select No synchronization, you can define custom processes to exchange data between One Identity Manager and the target system.
Build version The build version for SharePoint services for this farm are read in during synchronization.
Related topics

How to edit a synchronization project

Synchronization projects in which a farm is already used as a base object can also be opened in the Manager. You can, for example, check the configuration or view the synchronization log in this mode. The Synchronization Editor is not started with its full functionality. You cannot run certain functions, such as, running synchronization or simulation, starting the target system browser and others.

NOTE: The Manager is locked for editing throughout. To edit objects in the Manager, close the Synchronization Editor.

To open an existing synchronization project in the Synchronization Editor

  1. Select the SharePoint | Farms category.
  2. Select the farm in the result list. Select the Change master data task.
  3. Select the Edit synchronization project... task.
Detailed information about this topic
  • One Identity Manager Target System Synchronization Reference Guide
Related topics
Related Documents

The document was helpful.

Seleziona valutazione

I easily found the information I needed.

Seleziona valutazione