|
TargetSystem | AzureAD |
Preprocessor relevant configuration parameter for controlling database model components for Azure Active Directory target system administration. If the parameter is set, the target system components are available. Changes to this parameter require the database to be recompiled.
If you disable the configuration parameter at a later date, model components and scripts that are no longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide. |
|
TargetSystem | AzureAD | Accounts |
Allows configuration of user account data. |
|
TargetSystem | AzureAD | Accounts |
InitialRandomPassword |
Specifies whether a random password is generated when a new user account is added. The password must contain at least those character sets that are defined in the password policy. |
|
TargetSystem | AzureAD | Accounts |
InitialRandomPassword | SendTo |
Identity to receive an email with the random generated password (manager cost center/department/location/role, identity’s manager or XUserInserted). If no recipient can be found, the password is sent to the address stored in the TargetSystem | AzureAD | DefaultAddress configuration parameter. |
|
TargetSystem | AzureAD | Accounts |
InitialRandomPassword | SendTo |
MailTemplateAccountName |
Mail template name that is sent to supply users with the login credentials for the user account. The Identity - new user account created mail template is used. |
|
TargetSystem | AzureAD | Accounts |
InitialRandomPassword | SendTo |
MailTemplatePassword |
Mail template name that is sent to supply users with the initial password. The Identity - initial password for new user account mail template is used. |
|
TargetSystem | AzureAD | Accounts |
MailTemplateDefaultValues |
Mail template used to send notifications about whether default IT operating data mapping values are used for automatically creating a user account. The Identity - new user account with default properties created mail template is used. |
|
TargetSystem | AzureAD | Accounts |
PrivilegedAccount |
Allows configuration of privileged Azure Active Directory user account settings. |
|
TargetSystem | AzureAD | Accounts |
PrivilegedAccount |
AccountName_Postfix |
Postfix for formatting the login name of privileged user accounts. |
|
TargetSystem | AzureAD | Accounts |
PrivilegedAccount |
AccountName_Prefix |
Prefix for formatting a login name of privileged user accounts. |
|
TargetSystem | AzureAD | DefaultAddress |
Default email address of the recipient for notifications about actions in the target system. |
|
TargetSystem | AzureAD | DeltaTokenDirectory |
Directory where the delta token files for the delta synchronization are stored. |
|
TargetSystem | AzureAD |
MaxFullsyncDuration |
Maximum runtime of a synchronization in minutes. No recalculation of group memberships by the DBQueue Processor can take place during this time. If the maximum runtime is exceeded, group membership are recalculated. |
|
TargetSystem | AzureAD |
PersonAutoDefault |
Mode for automatic identity assignment for user accounts added to the database outside synchronization. |
|
TargetSystem | AzureAD |
PersonAutoDisabledAccounts |
Specifies whether identities are automatically assigned to disabled user accounts. User accounts are not given an account definition. |
|
TargetSystem | AzureAD |
PersonAutoFullSync |
Mode for automatic identity assignment for user accounts that are added to or updated in the database by synchronization. |
|
TargetSystem | AzureAD |
PersonExcludeList |
Listing of all user account without automatic identity assignment. Names are listed in a pipe (|) delimited list that is handled as a regular search pattern.
Example:
ADMINISTRATOR|GUEST|KRBTGT|TSINTERNETUSER|IUSR_.*|IWAM_.*|SUPPORT_.*|.* | $ |
|
TargetSystem | AzureAD | PersonUpdate |
Specifies whether identities are updated if their user accounts are changed. This configuration parameter is set to allow ongoing update of identities from associated user accounts. |
|
QER | ITShop | AutoPublish | AADGroup |
Preprocessor relevant configuration parameter for automatically adding Azure Active Directory groups to the IT Shop. If the parameter is set, all groups are automatically assigned as products to the IT Shop. Changes to this parameter require the database to be recompiled.
If you disable the configuration parameter at a later date, model components and scripts that are no longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide. |
|
QER | ITShop | AutoPublish | AADGroup | ExcludeList |
List of all Azure Active Directory groups that must not be automatically assigned to the IT Shop. Each entry is part of a regular search pattern and supports regular expression notation.
Example:
.*Administrator.*|Exchange.*|.*Admins|.*Operators|IIS_IUSRS |
|
QER | ITShop | AutoPublish | AADSubSku |
Preprocessor relevant configuration parameter for automatically adding Azure Active Directory subscriptions to the IT Shop. If the parameter is set, all subscriptions are automatically assigned as products to the IT Shop. Changes to this parameter require the database to be recompiled.
If you disable the configuration parameter at a later date, model components and scripts that are no longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide. |
|
QER | ITShop | AutoPublish | AADSubSku | ExcludeList |
List of all Azure Active Directory subscriptions that must not be automatically assigned to the IT Shop. Each entry is part of a regular search pattern and supports regular expression notation. |
|
QER | ITShop | AutoPublish | AADDeniedServicePlan |
Preprocessor relevant configuration parameter for automatically adding Azure Active Directory service plans to the IT Shop. If the parameter is set, all service plans are automatically assigned as products to the IT Shop. Changes to this parameter require the database to be recompiled.
If you disable the configuration parameter at a later date, model components and scripts that are no longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide. |
|
QER | ITShop | AutoPublish | AADDeniedServicePlan | ExcludeList |
List of all Azure Active Directory service plans that must not be automatically assigned to the IT Shop. Each entry is part of a regular search pattern and supports regular expression notation. |
