サポートと今すぐチャット
サポートとのチャット

Identity Manager 9.1.1 - Target System Synchronization Reference Guide

Target system synchronization with the Synchronization Editor Working with the Synchronization Editor Basics of target system synchronization Setting up synchronization
Starting the Synchronization Editor Creating a synchronization project Configuring synchronization
Setting up mappings Setting up synchronization workflows Connecting systems Editing the scope Using variables and variable sets Setting up start up configurations Setting up base objects
Overview of schema classes Customizing the synchronization configuration Checking the consistency of the synchronization configuration Activating the synchronization project Defining start up sequences
Running synchronization Synchronization analysis Setting up synchronization with default connectors Updating existing synchronization projects Script library for synchronization projects Additional information for experts Troubleshooting errors when connecting target systems Configuration parameters for target system synchronization Configuration file examples

Deleting objects in One Identity Manager

You have two options for deleting objects in the One Identity Manager, which do not exist in the target system, by using synchronizationClosed.

  1. The objects are deleted immediately on synchronization.

    You can view the synchronization log to see which objects have been deleted.

    NOTE: Memberships that exist based on an inheritance cannot be deleted immediately. They are always marked as outstanding.
  2. The objects are marked as outstanding by synchronization.

    Outstanding objects must be post-processed separately in One Identity Manager. They can either be deleted or published in the target system in the process. This prevents objects being deleted because of an incorrect data situation or an incorrect synchronization configuration.

    Outstanding objects:

    • Cannot be edited in One Identity Manager.

    • Are ignored by subsequent synchronizations.

    • Are ignored by inheritance calculations.

    This means, all memberships and assignments remain intact until the outstanding objects have been processed.

To delete objects immediately in One Identity Manager

  1. Edit the synchronization stepClosed properties.

    For more information, see How to edit synchronization steps.

  2. Select the Processing tab.
  3. Specify the processing method. Select the following options as appropriate:
    For synchronization from the target systems to One Identity Manager Processing methodClosed (technical name)
    Objects that are only found in One Identity Manager: Delete

To mark object as outstanding in One Identity Manager

  1. Edit the synchronization step properties.

    For more information, see How to edit synchronization steps.

  2. Select the Processing tab.
  3. Specify the processing method. Select the following options as appropriate:
    For synchronization from the target systems to One Identity Manager Processing Method (technical name)
    Objects that are only found in One Identity Manager: MarkAsOutstanding

Outstanding objects cannot be editing in One Identity Manager until they have been verified. They are ignored by every other synchronization.

To delete outstanding objects in the One Identity Manager

  1. Start the Manager.
  2. Select the <target system type> > Target systemClosed synchronization: <target system type> > <table> category.
  1. Select the objects you want to delete. Multi-select is possible.
  2. Click .
  3. Confirm the security prompt with Yes.

    The selected objects are immediately deleted in the One Identity Manager database. Deferred deletion is not taken into account. The "outstanding" label is removed from the objects.

Related topics

How to remove unnecessary project data

All the schema data (schema types and schema properties) of the target system schema and the One Identity Manager schema are available when you are editing a synchronization projectClosed. Only a part of this data is really needed for configuring synchronization. If a synchronization project is finished, the schema is compressed to remove unnecessary data from the synchronization project. This can speed up the loading of the synchronization project.

  • Activating the Synchronization Project

    Unnecessary schema data is automatically removed from the synchronization project on activation.

  • Shrink schema
    1. Schemas are shrunk when the synchronization project is saved for the first time.
    2. Each time the system is connected, you have the option to shrink the schema.

      All the schema types that are not currently in use are displayed in a dialog. You may remove these from the synchronization project. Here you can select the schema types that should remain available for you to use later.

To shrink the system connection schema

  1. Select Configuration | Target systemClosed.

    - OR -

    Select Configuration | One Identity Manager connection.

  2. Click Shrink schema... in the General view.
  3. Mark all the schema types that should not be removed.

    These schema types remain there and can still be used in the synchronization configuration.

  4. Click OK.

You can add the deleted schema data back into the synchronization project again later. To do this you must update the respective schema.

Related topics

Updating schemas

To include schema data that have been deleted through compression and schema modifications in the synchronization projectClosed, update each schema in the synchronization project. This may be necessary if:

  • A schema was changed by:

    • Changes to a target system schema

    • CustomizationsClosed to the One Identity Manager schema

    • A One Identity Manager update migration

  • A schema in the synchronization project was shrunk by:

    • Enabling the synchronization project

    • Saving the synchronization project for the first time

    • Compressing a schema

To update a system connection schema

  1. Select the Configuration > Target systemClosed category.

    - OR -

    Select the Configuration > One Identity Manager connection category.

  2. Select the General view and click Update schema.

  3. Confirm the security prompt with Yes.

    This reloads the schema data.

Then you can add the changes to the schema property mapping.

NOTE: The synchronization is deactivated if the schema of an activated synchronization project is updated. Reactivate the synchronization project to synchronize.

Related topics

Synchronizing and provisioning memberships

Memberships, such as user accounts in groups, are saved in assignment tablesClosed in the One Identity Manager database. Membership lists are commonly maintained as an object propertyClosed in the target system. If a membership is modified in One Identity Manager, the object must be updated.

関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択