Converse agora com nosso suporte
Chat com o suporte

Active Roles 7.6 - Synchronization Service Administration Guide

Synchronization Service Overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with an OpenLDAP directory service Working with IBM RACF connector Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft Office 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use
About scenarios Scenario 1: Create users from a .csv file to an Active Directory domain Scenario 2: Use a .csv file to update user accounts in an Active Directory domain Scenario 3: Synchronizing data between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 4: Deprovisioning between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 5: Provisioning of Groups between One Identity Manager Custom Target Systems and an Active Directory domain Scenario 6: Enabling Delta Sync mode between One Identity Manager Custom Target Systems and an Active Directory domain Example of using the Generic SCIM Connector for data synchronization
Appendix A: Developing PowerShell scripts for attribute synchronization rules Appendix B: Using a PowerShell script to transform passwords

Example: Synchronizing group memberships

This example illustrates how to configure a creating step to synchronize group memberships from an Active Directory domain to an AD LDS (ADAM) instance. The example demonstrates how to create rules in the step to synchronize the value of the member attribute in the Active Directory domain to the member attribute in AD LDS (ADAM).

To synchronize the member attribute

  1. Follow the steps described in the Adding a creating step section until you reach the wizard page titled Specify creation rules.
  2. In the Initial Attribute Population Rules element, click the down arrow on the leftmost button below the list to select Forward Sync Rule.
  3. In the dialog box that opens, add the following pair of attributes:
    • Source item: member attribute (Active Directory)
    • Target item: member attribute (AD LDS)

    For more information about the options in this dialog box, see Configuring a forward sync rule.

  1. When you are finished, click OK.
  2. Follow the steps in the wizard to complete the creating step.

Example: Synchronizing multivalued attributes

This example illustrates how to configure a creating step to synchronize multivalued attributes from an Active Directory domain to an AD LDS (ADAM) instance. The example demonstrates how to create rules in the step to synchronize the value of the otherTelephone attribute in the Active Directory domain to the otherTelephone attribute in AD LDS (ADAM).

To synchronize the otherTelephone attribute

  1. Follow the steps provided in the Adding a creating step section until you reach the wizard page titled Specify creation rules.
  2. In the Initial Attribute Population Rules element, click the down arrow on the leftmost button below the list to select Forward Sync Rule.
  3. In the dialog box that opens, add the following pair of attributes:
    • Source item: otherTelephone attribute (Active Directory)
    • Target item: otherTelephone attribute (AD LDS)

    For more information about the options in this dialog box, see Configuring a forward sync rule.

  1. When you are finished, click OK.
  2. Follow the steps in the wizard to complete the configuration of the creating step.

Using sync workflow alerts

The Synchronization Service provides an email notification service that allows you to inform recipients about the completion of a sync workflow run.

For each sync workflow that includes at least one synchronization step, you can configure multiple alerts. Then, when a sync workflow run completes, the recipients signed up for the alert receive an email message informing them about the completion of the sync workflow run. For example, you can use sync workflow alerts to inform recipients when a sync workflow run completes with errors.

To manage alerts for a sync workflow, go to the Sync Workflows tab in the Synchronization Service Administration Console, and then click the Manage alerts link below the sync workflow.

To manage outgoing mail profiles for sending sync workflow alerts, in the Synchronization Service Administration Console, click the Settings menu in the upper right corner, and then click the Mail Profiles.

In this section:

Creating or editing a sync workflow alert

To create or edit an alert

  1. In the Synchronization Service Administration Console, open the Sync Workflows tab.
  2. Click the Manage alerts link below the sync workflow for which you want to create or edit an alert.

    The Manage alerts link is only available on sync workflows that include one or more synchronization steps.

  1. In the Manage Sync Workflow Alerts dialog box, do one of the following:
    • If you want to create a new alert, click the Add button under the Sync workflow alerts list.
    • If you want to edit an existing alert, select that alert in the Sync workflow alerts list, and then click the Edit button under the list.
  2. Use the following options in the dialog box that opens to specify alert settings, and then click OK:
    • When this event occurs. Select an event that will trigger the alert. You can select one of the following:
      • Sync workflow run completes (with or without errors). Triggers the alert upon the sync workflow run completion regardless of any errors encountered in the run.
      • Sync workflow run completes with errors. Triggers the alert only when the sync workflow run completed with errors.
    • Send email to. Type the email addresses of the recipients to which you want to send a notification email message when the selected event occurs. When specifying multiple email addresses, use a semicolon as a separator.
    • Email message subject. Type the text you want to include into the notification email message subject.
    • Ignore mapping errors. Select this check box if you want the alert to skip mapping errors in sync workflow runs. This check box is only available when you select Sync workflow run completes with errors in the When this event occurs option.
    • Ignore non-fatal errors in. Select this check box if you want this alert to skip non-fatal errors in sync workflow runs. A non-fatal error causes a sync workflow run to partially succeed. A fatal error causes a sync workflow run to fail. If you select this check box, you must also select one of the following options:
    • All sync workflow steps. Causes the alert to skip non-fatal errors in all steps of the sync workflow.
    • The specified sync workflow steps. Causes the alert to skip non-fatal errors in the sync workflow steps you specify in the text box below. Type sync workflow step numbers separated by commas (example: 1, 3, 5). To specify a range of steps, use a dash as a separator (example: 1, 3, 5-8).

      This check box is only available when you select Sync workflow run completes with errors in the When this event occurs option.

  3. Use the Send email using this outgoing mail profile list to select the settings to be used for sending notification emails generated by the alerts in the Sync workflow alerts list.

    To configure the current outgoing mail profile, click the Properties button. For more information, see Managing outgoing mail profiles.

  1. When you are finished, click OK to close the Manage Sync Workflow Alerts dialog box.
Documentos relacionados

The document was helpful.

Selecione a classificação

I easily found the information I needed.

Selecione a classificação