Chat now with support
Chat with Support

Active Roles 7.4.3 - Synchronization Service Administration Guide

Synchronization Service Overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported out of the box
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with an OpenLDAP directory service Working with IBM RACF connector Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft Office 365 Working with Microsoft Azure Active Directory
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Appendix A: Developing PowerShell scripts for attribute synchronization rules Appendix B: Using a PowerShell script to transform passwords

Sample SQL queries

The sample queries provided in this section are only applicable if Synchronization Service is connected to the target Oracle Database through the Oracle Database Connector.

Sample SQL query 1

This SQL query illustrates how to add a new entry to the table named SQLConnTest1 in Oracle Database to which you want to provision data from another connected system.

Table 25: Add a new entry to the SQLConnTest1 table
Database table structure Sample query
CREATE TABLE "SQLConnTest1"("Id" number,"attr1" nchar(64), "attr2" nchar(64)) Insert into SQLConnTest1(attr1) values(:attr1) returning Id into :Id

In this sample query, Id stands for the attribute that uniquely identifies each object in Oracle Database.

Sample SQLl query 2

This SQL query illustrates how to create a new user in Oracle Database:

call dbms_utility.exec_ddl_statement('CREATE USER ' || :USERNAME || ' IDENTIFIED BY ' || :newPassword)

In this sample query:

  • USERNAME refers to the name of the attribute that uniquely identifies a user in Oracle Database.

  • newPassword refers to the name of the attribute that will store the initial password you want to set for the Oracle Database user being created.

Working with Oracle Database user accounts

This section describes how to create or modify a connection to Oracle Database user accounts so that Synchronization Service could work with Oracle Database user accounts data in that data system. This section also describes what data you can read and/or write in Oracle Database user accounts by using Synchronization Service.

To create a connection to Oracle Database user accounts and work with the user accounts in that data system, you need to use Synchronization Service in conjunction with a special connector called Oracle Database User Account Connector. This connector is included in the Synchronization Service.

The Oracle Database User Accounts Connector supports the following features:

 

Table 26:  Supported features

Feature

Supported

Bidirectional synchronization

Allows you to read and write data in the connected data system.

Yes

Delta processing mode

Allows you to more quickly synchronize identity data by processing only the data that has changed in the source and target systems since their last synchronization.

No

Password synchronization

Allows you to synchronize user passwords from an Active Directory domain to the connected data system.

Yes

Password synchronization is only supported for user accounts that are authenticated entirely by Oracle Database. The Oracle Database User Accounts Connector does not support password synchronization for Oracle Database user accounts that use external or global authentication in Oracle terms.

In this section:

Related Documents