サポートと今すぐチャット
サポートとのチャット

Active Roles 8.1.1 - Synchronization Service Administration Guide

Synchronization Service overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Database Working with Oracle Database user accounts Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with an OpenLDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with IBM RACF Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector Objects and operations supported by the SCIM Connector Example of using the Generic SCIM Connector for data synchronization
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Developing PowerShell scripts for attribute synchronization rules Using PowerShell script to transform passwords

Creating a Salesforce connection

You can create a new Salesforce connection in the Synchronization Service Console.

To create a new Salesforce connection

  1. In the Synchronization Service Console, open the Connections tab.
  2. Click Add connection, then use the following options:
    • Connection name: Type a descriptive name for the connection.
    • Use the specified connector: Select Salesforce Connector.

  3. Click Next.

  4. On the Specify connection settings page, use the following options:
    • Connect to Salesforce Sandbox: Select this check box if you want to connect to your Salesforce testing environment. If you want to connect to production environment, make sure this check box is cleared. For more information about Salesforce Sandbox, see the Salesforce documentation.

    • User name: Type the user name of the account with which you want to access Salesforce. The account must have the System Administrator profile in the target Salesforce system.

    • Password: Type the password of the account with which you want to access Salesforce.

    • Security token: Enter the security token provided to you by Salesforce. For more information on what a security token is and how to obtain it, see the Salesforce documentation.

    • Use a proxy server for your LAN: Select this check box if your LAN uses a proxy server, and then enter the proxy server address in the Proxy server box.

    • Use credentials for proxy: Select this check box if your proxy server requires authentication. Use the appropriate text boxes to specify the user name and password with which you want to authenticate.

    • Test Connection: Click this button to verify the specified connection settings.
  5. To complete the configuration of the Salesforce connection, click Finish.

Modifying an existing Salesforce connection

You can modify an existing Salesforce connection in the Synchronization Service Console.

To modify connection settings

  1. In the Synchronization Service Console, open the Connections tab.
  2. Click Connection settings below the existing Salesforce connection you want to modify.

  3. On the Connection Settings tab, click the Specify connection settings item to expand it and use the following options:

    • Connect to Salesforce Sandbox: Select this check box if you want to connect to your Salesforce testing environment. If you want to connect to production environment, make sure this check box is cleared. For more information about Salesforce Sandbox, see the Salesforce documentation.

    • User name: Type the user name of the account with which you want to access Salesforce. The account must have the System Administrator profile in the target Salesforce system.

    • Password: Type the password of the account with which you want to access Salesforce.

    • Security token: Enter the security token provided to you by Salesforce. For more information on what a security token is and how to obtain it, see the Salesforce documentation.

    • Use a proxy server for your LAN: Select this check box if your LAN uses a proxy server, and then enter the proxy server address in the Proxy server box.

    • Use credentials for proxy: Select this check box if your proxy server requires authentication. Use the appropriate text boxes to specify the user name and password with which you want to authenticate.

    • Test Connection: Click this button to verify the specified connection settings.
  4. Click Save.

Salesforce data supported for synchronization

The Salesforce Connector of Active Roles Synchronization Service supports all Salesforce object types, with all operations (Create, Read, Update, Delete) that you can perform on those objects with native Salesforce tools.

To read and/or write data related to a particular object in Salesforce, you can use the following resources:

Additional user object attributes for a Salesforce connection

You can specify the following additional user attributes in your Salesforce connection.

Table 45: Additional user attributes
Attribute Description Supported operations

vaProfileName

Allows you to specify a Salesforce profile. For example, you can use this attribute to assign a Salesforce profile to a user being provisioned to Salesforce.

To specify a profile, enter the profile name as it appears in the Salesforce user interface.

Examples of vaProfileName values:

  • System Administrator

  • Force.com - Free User

Read, Write

vaRoleName

Allows you to specify a Salesforce role. For example, you can use this attribute to assign a Salesforce role to a user being provisioned to Salesforce.

To specify a role, enter the role name in the format used in the Salesforce user interface.

For more information on roles, see the Salesforce documentation.

Read, Write

vaManagerName

Allows you to specify a manager for a particular user.

To specify a manager, enter the manager name in the format used in the Salesforce user interface.

Read, Write

vaContactName

Allows you to specify an associated contact for a particular user.

To specify an associated contact, enter the associated contact name in the format used in the Salesforce user interface.

Read, Write

vaMemberOf

Allows you to define group membership for a particular user.

NOTE: Consider the following:

  • This attribute is primarily intended for group membership synchronization.

  • This attribute contains references to the groups where the user is a member.

Read, Write

vaMemberOfName

Allows you to define group membership for a particular user (for example, when provisioning a user to Salesforce).

Specify the names of the Salesforce groups where you want the user to be a member.

Read, Write

vaLocale

Allows you to specify a locale for a particular user (for example, when provisioning a user to Salesforce).

To specify a locale, enter the locale name in the format used in the Salesforce user interface.

Example of a vaLocale value: English (United States)

Read, Write

vaTimeZone

Allows you to specify a time zone for a user (for example, when provisioning a user to Salesforce).

To specify a time zone, enter the time zone name in the format used in the Salesforce user interface.

Example of a vaTimezone value: (GMT+00:00) Greenwich Mean Time (GMT)

Read, Write

vaEmailEncoding

Allows you to specify outbound email encoding to be used for a user (for example, when provisioning a user to Salesforce).

Specify email encoding in the format used in the Salesforce user interface.

Example of a vaEmailEncoding value: Unicode (UTF-8)

Read, Write

vaLanguage

Allows you to specify a user interface language for a particular user.

The Salesforce user interface and help will be displayed to the user in the language you specify in this attribute.

Read, Write

vaDelegatedApproverUserName

Allows you to specify the name of the user you want to appoint as a delegated approver.

Read, Write

vaDelegatedApproverGroupName

Allows you to specify the name of a group all members of which you want to appoint as delegated approvers.

Read, Write

関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択