Converse agora com nosso suporte
Chat com o suporte

Active Roles 7.6 - Synchronization Service Administration Guide

Synchronization Service Overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with an OpenLDAP directory service Working with IBM RACF connector Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft Office 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use
About scenarios Scenario 1: Create users from a .csv file to an Active Directory domain Scenario 2: Use a .csv file to update user accounts in an Active Directory domain Scenario 3: Synchronizing data between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 4: Deprovisioning between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 5: Provisioning of Groups between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 6: Enabling Delta Sync mode between One Identity Manager Custom Target Systems and an Active Directory domain Example of using the Generic SCIM Connector for data synchronization
Appendix A: Developing PowerShell scripts for attribute synchronization rules Appendix B: Using a PowerShell script to transform passwords

Source tab

Allows you to view information about the source connected system and source object type specified for the synchronization step. You can also view or modify the criteria used to perform the creation, deprovision, or update operation in the step.

For all types of synchronization steps (creating, deprovisioning, and updating) this tab provides the following options:

  • Source connected system. Displays the name of the source data system.
  • Source object type. Displays the object type that is used as a source for the synchronization step.

For deprovisioning steps, this tab also provides the Deprovision target objects if option. It allows you to modify the criteria used for triggering the deprovision operation in the target data system.

For creating steps, this tab also provides the Creation Criteria option. It allows you to modify the scope of source data system objects that participate in the creating step. Expand Creation Criteria to modify the list of containers that hold the source objects you want to participate in the step. Also you can specify additional criteria for selecting source objects.

For updating steps, this tab also provides the Updating Criteria option. It allows you to modify the scope of source data system objects that participate in the updating step. Expand Updating Criteria to specify the containers that hold the source objects you want to participate in the step. You can also specify additional criteria for selecting source objects.

Target tab

Allows you to view information about the target connected system and target object type specified for the synchronization step. For creating steps, you can use this tab to view and modify the target container to which objects are created and rules to generate unique names for created objects.

For all types of synchronization steps (creating, deprovisioning, and updating) this tab provides the following elements:

  • Target connected system. Displays the name of the data system that is currently used as a target for the synchronization step.
  • Target object type. Displays the object type that is currently used as a target for the synchronization step.

For creating steps related to certain types of target data systems, this tab may also provide any of the following additional elements:

  • Target container. Allows you to specify the target data system container in which you want to create objects from the source data system. For more information, see Generating object names by using rules.
  • Rules to generate unique object name. Allows you to set up a list of rules to generate a unique name for each object being created. For more information, see Generating object names by using rules.

Creation Rules tab

Allows you to view or modify the rules used for creating objects. This tab has the following elements:

  • Initial Attribute Population Rules. Expand this element to view or modify the rules for populating the attributes of objects being created.
  • Initial Password. Expand this element to view or modify how an initial password is generated for each object being created.
  • User Account Options. Expand this element to view or modify the settings used for creating user accounts in the result of the creation operation.

You can use this tab to import or export initial attribute population rules.

To export a population rule to a file

  1. In the list of configured attribute population rules, select the rule you want to export.
  2. Click More, and then click Export.
  3. In the Save As dialog box, specify an XML file to store the rule.

To import a population rule from a file

  1. Expand Initial Attribute Population Rules, click More, and then click Import.
  2. Use the Open dialog box to open the XML file that stores the population rule to import.

Deprovisioning Rules tab

Allows you to select a method for deprovisioning objects. You can select Delete target objects to delete the target objects if the source objects meet the criteria specified earlier in the wizard or Modify target objects to modify the target objects using the rules configured in the options below:

  • Rules to Modify Object Attributes. Expand this option to set up a list of rules to modify the attributes of target objects. For more information, see Modifying attribute values by using rules.
  • Rules to Move Objects. Expand this option to specify the location to which you want to move objects. Click the down arrow on the button, and then select one of the following:
    • Browse. Click to locate and select a single target container.
    • PowerShell Script. Click to compose a PowerShell script that calculates the target container name.
    • Rule. Click to configure a set of rules for selecting target containers.
    • Use Mapping. Click to define a target container based on the mapping of the source object.
    • Clear. Click to use an empty value.
  • Rules to Rename Objects. Expand this option to set up a list of rules to rename objects.
Documentos relacionados

The document was helpful.

Selecione a classificação

I easily found the information I needed.

Selecione a classificação