Active Roles 7.3.1 - Synchronization Service Administrator Guide

Synchronization Service Overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported out of the box
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Sample queries to modify SQL Server data Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft Office 365 Working with Microsoft Azure Active Directory
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Appendix A: Developing PowerShell scripts for attribute synchronization rules Appendix B: Using a PowerShell script to transform passwords

Specify attributes to identify objects

Specify attributes to identify objects

This expandable item provides the following options that allow you to specify the attributes with which you want to uniquely identify each object in the connected data system:

  • Available attributes. Lists the attributes that are available in the external data system. Use this list to select the attributes whose values you want to use to generate a unique identifier for each object in the external data system. You can filter attributes by typing in the text box at the top of this list. To select multiple attributes, hold down CTRL and click to select attributes in the list.
  • UniqueID attributes. Lists the attributes whose values are currently used to generate a unique identifier for each object in the external data system.
  • Add->. Moves the selected attributes from the Available attributes list to the UniqueID attributes list.
  • <-Remove. Moves the selected attributes from the UniqueID attributes list to the Available attributes list.
  • Constructed UniqueID. Displays a combination of the attributes whose values will make up a unique identifier for each object in the external data system.

Working with SharePoint

Working with SharePoint

This section describes how to create or modify a connection to Microsoft SharePoint so that Synchronization Service could work with data in that data system.

To create a connection to SharePoint, you need to use Synchronization Service in conjunction with a connector called SharePoint Connector. You must install this connector on the SharePoint server you want to work with. The SharePoint connector is included in the Synchronization Service package.

The SharePoint Connector supports the following features:

 

Table 57: Supported features

Feature

Supported

Bidirectional synchronization

Allows you to read and write data in the connected data system.

Yes

Delta processing mode

Allows you to process only the data that has changed in the connected data system since the last synchronization operation, thereby reducing the overall synchronization operation time.

No

Password synchronization

Allows you to synchronize user passwords from an Active Directory domain to the connected data system.

No

In this section:

Creating a SharePoint connection

Creating a SharePoint connection

To create a new connection

  1. Ensure that you have installed the SharePoint Connector on the SharePoint server you want to work with.
  2. In the Synchronization Service Administration Console, open the Connections tab.
  3. Click Add connection, and then use the following options:
    • Connection name. Type a descriptive name for the connection.
    • Use the specified connector. Select SharePoint Connector.
  4. Click Next.
  5. On the Specify connection settings page, click the Test Connection button to ensure that the connector can access SharePoint.
  6. If the test succeeds, click Finish to create a connection.

SharePoint data supported out of the box

SharePoint data supported out of the box

The next table lists the objects supported by the SharePoint Connector out of the box and the operations you can perform on these objects by using the connector.

For each of the supported SharePoint object types Synchronization Service provides special attributes that allow you to read or write data in SharePoint. You can access and use these attributes from the Synchronization Service Administration Console (for example, when selecting the source and target attributes you want to participate in the synchronization operation).

 

Table 58: Supported objects and operations 

Object

Read

Create

Delete

Update

AlternateURL

Allows you to read data related to an incoming URL and the zone with which it is associated.

Yes

No

No

No

ClaimProvider

Allows you to read data related to a claim provider.

Yes

No

No

No

Farm

Allows you to work with a SharePoint farm.

Yes

No

No

No

Group

Allows you to work with a group on a SharePoint Web site.

Yes

Yes

Yes

Yes

Language

Allows you to work with a language used in SharePoint.

Yes

No

No

No

Policy

Allows you to work with a policy assigned to a user or group.

Yes

Yes

Yes

Yes

PolicyRole

Allows you to work with the rights possessed by a policy role.

Yes

Yes

Yes

Yes

Prefix

Allows you to work with a relative URL that determines segments of the URL under which sites may be created.

Yes

No

No

No

RoleAssignment

Allows you to work with role assignments for a user or group.

Yes

Yes

Yes

Yes

RoleDefinition

Allows you to work with a role definition, including name, description, management properties, and a set of rights.

Yes

Yes

Yes

Yes

Site

Allows you to work with site collections in a IIS Web application.

Yes

Yes

Yes

Yes

User

Allows you to work with a user in SharePoint.

Yes

Yes

Yes

Yes

Web

Allows you to work with a SharePoint Web site.

Yes

Yes

Yes

Yes

WebApplication

Allows you to work with an Internet Information Services (IIS) load-balanced Web application installed on a server farm.

Yes

No

No

Yes

WebTemplate

Allows you to work with a site definition configuration or a Web template used to create SharePoint sites.

Yes

No

No

No

The next sections describe the attributes provided by Synchronization Service and explain what data you can read or write in SharePoint by using a particular attribute.

In the next sections:

Related Documents