Chat now with support
Chat with Support

Identity Manager 9.2.1 - Administration Guide for Connecting to Cloud Applications

Mapping cloud applications in One Identity Manager Synchronizing cloud applications through the Universal Cloud Interface Provisioning object changes Managing provisioning processes in the Web Portal Mapping cloud objects in One Identity Manager
Cloud applications Container structures in cloud applications User accounts in cloud applications Groups and system entitlements in cloud applications Permissions controls in a cloud application
Base data for managing cloud applications Troubleshooting a cloud application connection Default project template for cloud applications Cloud system object processing methods Configuration parameters for managing cloud applications

Project template for SCIM

Use the SCIM synchronization project template for synchronizing any System for Cross-domain Identity Management. The project template uses mappings for the following schema types.

Table 36: Mapping SCIM schema types to tables in the One Identity Manager schema
SCIM schema type Table in the One Identity Manager Schema
Group UCIGroup
User UCIUser

Project template for One Identity Starling Connect

Use the One Identity Starling Connect synchronization project template for synchronizing SCIM using One Identity Starling Connect. The project template uses mappings for the following schema types.

Table 37: Mapping One Identity Starling Connect schema types to tables in the One Identity Manager schema
SCIM schema type Table in the One Identity Manager Schema
Group UCIGroup
User UCIUser

Permissionset

UCIItem

Role

UCIGroup1

Profiles

UCIGroup2

Entitlement

UCIGroup3

Cloud system object processing methods

The following table describes permitted processing methods for SCIM schema types and the necessary restrictions for processing the system objects. By default, One Identity Manager allows all processing methods. Whether these processing methods can be used in the connected cloud application depends on the its implementation.

Table 38: Methods available for processing SCIM schema types

Schema type

Read

Paste

Delete

Refresh

User account (User)

Yes

Yes

Yes

Yes

Permissions control (UCIItem) Yes Yes Yes Yes

Group (Group)

Yes

Yes

Yes

Yes

System entitlement 1 (UCIGroup1)

Yes

Yes

Yes

Yes

System entitlement 2 (UCIGroup2)

Yes

Yes

Yes

Yes

System entitlement 3 (UCIGroup3)

Yes

Yes

Yes

Yes

Configuration parameters for managing cloud applications

The following configuration parameters are required.

Table 39: Additional configuration parameters

Configuration parameters

Meaning

QBM | PendingChange

General configuration parameter for configuring pending changes.

QBM | PendingChange | LifeTimeError

This configuration parameter specifies the maximum retention period (in days) for failed provisioning processes. The default is 30 days.

QBM | PendingChange | LifeTimeRunning

This configuration parameter specifies the maximum retention period (in days) for open provisioning processes. The default is 60 days.

QBM | PendingChange | LifeTimeSuccess

This configuration parameter specifies the maximum retention period (in days) for successful provisioning processes. The default is 2 days.

TargetSystem | CSM | ApplicationType

Configuration of the different cloud applications.

TargetSystem | CSM | ApplicationType | Salesforce

Salesforce application settings

TargetSystem | CSM | ApplicationType | Salesforce | DefaultProfileName

Name of the default profile assigned to new Salesforce users.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating