Chat now with support
Chat with Support

Active Roles 8.2.1 - Feature Guide

Introduction About Active Roles
Main Active Roles features Technical overview of Active Roles
About presentation components Overview of service components About network data sources About security and administration elements About Active Directory security management Customization using ADSI Provider and script policies About dynamic groups About workflows Operation in multi-forest environments
Examples of use
Administrative rules and roles
About Managed Units About Access Templates About Access Rules About rule-based autoprovisioning and deprovisioning
Configuring and administering Active Roles Overview of Active Roles Synchronization Service Support for AWS Managed Microsoft AD FIPS compliance LSA protection support STIG compliance

About bidirectional synchronization

Bidirectional synchronization allows you to synchronize all changes to identity information between your data systems. Using this feature, you can prevent potential identity information conflicts between different data sources.

NOTE: This feature is only supported by certain data systems. For more information, see the relevant data connector documentation in the Active Roles Synchronization Service Administration Guide.

About delta processing

Delta processing allows you to synchronize identities faster by processing only data that has changed in the source and target connected systems since the last synchronization run.

By offering both full synchronization or quick delta processing methods between two data systems, Synchronization Service provides you the flexibility of choosing the appropriate method for your synchronization tasks.

NOTE: This feature is only supported by certain data systems. For more information, see the relevant data connector documentation in the Active Roles Synchronization Service Administration Guide.

About group membership synchronization

Synchronization Service ensures that group membership information is synchronized across all connected data systems. For example, when creating a group object from an Active Directory (AD) domain to an AD LDS (ADAM) instance, you can configure rules to synchronize the Member attribute from the AD domain to the AD LDS (ADAM) instance.

About Windows PowerShell scripting

Synchronization Service supports Windows PowerShell-based scripting for data synchronization. The shell is implemented as a Windows PowerShell module, allowing you to automate synchronization tasks via PowerShell scripts.

For more information and examples, see the following sections of the Active Roles Synchronization Service Administration Guide:

  • Developing PowerShell scripts for attribute synchronization rules

  • Using PowerShell script to transform passwords

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating