Advanced Settings for the Exchange Online Connector
Advanced Settings for the Exchange Online Connector
You can specify whether want to set advanced options in the Synchronization Editor
- The number of concurrent connections per connection parameter set
- The definition of Windows PowerShell commands
Number of concurrent connections per connection parameter set
|
|
IMPORTANT: You should only make changes to this option with the help of help desk staff. Changes to this setting will have wide ranging effects on synchronization and must be made carefully. |
Use this option to set the number of concurrent connections for each connection parameter set or for each user account for synchronization. The setting specifies how many concurrent connections will be created for each user account. The default value is 2. Exchange Online currently allows 3 connections per user account on the server side.
When the Exchange Online connector creates the connection, it creates one Windows PowerShell session per connection parameter set regardless of the number of queries that follow. Further connections are created on demand, for example, when loading multiple objects during the synchronization.
The maximum number of sessions established to Exchange Online can be calculated with the following formula:
Maximum number of Windows PowerShell sessions = Number of parameter sets * Value of concurrent connection per connection parameter set
The minimum number of sessions established to Exchange Online is the same as the number of connection parameter sets.
To change the number of concurrent connections
- Select the option Show advanced options on Connect Exchange Online page in the Synchronization
- Enter a value between 1 and 3 in concurrent connections per connection parameter set.
- Enter login data on the Enter connection credentials page to connect to Exchange Online. For more information, see Creating a Synchronization Project for initial Synchronization of an Exchange Online Environment.
- Click Finish to end.
Customizing the connection definition
|
|
IMPORTANT: You should only make changes to this option with the help of help desk staff. Changes to this setting will have wide ranging effects on synchronization and must be made carefully. |
Use this setting to customize the definition used by the connector to translate input and output of Exchange Online Commandlets back and forth between the synchronization engine schema.
|
|
NOTE: A customized connection definition is not overwritten by default and must be made with careful consideration. |
To customize the connector definition
- Select the option Show advanced options on Connect Exchange Online page in the Synchronization Editor and click Next.
- Select Customize connector definition.
- Edit the definition according to the instructions given by the help desk staff.
- You take the following action:
- Load a definition from a file with
- Use
to test the definition for errors
- Display differences to the default version with
- Load a definition from a file with
- Click Next.
- Enter login data on the Connection parameters page for connecting to Exchange Online. For more information, see Creating a Synchronization Project for initial Synchronization of an Exchange Online Environment.
- Click Finish to end.
Show Synchronization Results
Show Synchronization Results
Synchronization
To display a synchronization log
- Open the synchronization project in the Synchronization Editor
- Select the category Logs.
- Click
in the navigation view toolbar.
Logs for all completed synchronization runs are displayed in the navigation view.
- Select a log by double-clicking on it.
An analysis of the synchronization is shown as a report. You can save the report.
To display a provisioning log.
- Open the synchronization project in the Synchronization Editor.
- Select the category Logs.
- Click
in the navigation view toolbar.
Logs for all completed provisioning processes are displayed in the navigation view.
-
Select a log by double-clicking on it.
An analysis of the provisioning is show as a report. You can save the report.
The log is marked in color in the navigation view. This mark shows you the execution status of the synchronization/provisioning.
Synchronization logs are stored for a fixed length of time. The retention period is set in the configuration parameter "DPR\Journal\LifeTime" and its sub parameters.
To modify the retention period for synchronization logs
- Set the configuration parameter "Common\Journal\LifeTime" in the Designer and enter the maximum retention time for entries in the database journal. Use the configuration sub parameters to specify the retention period for each warning level.
- If there is a large amount of data, you can specify the number of objects to delete per DBQueue Processor operation and run in order to improve performance. Use the configuration parameters "Common\Journal\Delete\BulkCount" and "Common\Journal\Delete\TotalCount" to do this.
- Configure and set the schedule "Delete journal" in the Designer.
Exchange Online Synchronization Features
Exchange Online Synchronization Features
There are a number of features for synchronizing Exchange Online environments, which are described here.
Dependency resolution
By default, automatic synchronization step dependency resolution is turned off in the synchronization workflow. This reduces the number of calls required to Exchange Online. This can lead to unresolved references during synchronization, which are handled in the maintenance phase at the end of synchronization.
Multiple organizations are not supported
Due to the dynamic number of used login accounts, variable sets cannot be used to parametrize the connection. For this reason, creating more base objects in one synchronization project is not supported.
Changing mailbox types in the Exchange Online portal
The default template for Exchange Online supports conversion of mailbox types as follows:
-
Shared mailbox to user mailbox
- User mailbox to share mailbox
- Equipment mailbox to room mailbox
- Room mailbox to equipment mailbox
|
|
NOTE: n performing an unsupported change, for example, a room mailbox to a shared mailbox, the synchronization will mark the room mailbox as 'missing' and fail to create the shared mailbox due to naming violations. This scenario can only be resolved manually. |
|
|
NOTE: One Identity Manager does not support handling of mailbox types. |
Synchronization of mailbox usage information
Synchronization
The following usage information is synchronized:
| Schema propertyProperty of a schema type. Refers to exactly one column of a table or view of the database based schema or exactly one object type property of the non-database based schema. in the Target SystemAn instance of a target system in which the employees managed by One Identity Manager have access to network resources. Example: An Active Directory domain X for target system type "Active Directory", a directory Y for target system type "LDAP", a client Z for target system type "SAP R/3". |
Description |
|---|---|
| AssociatedItemCount | Number of elements assigned to this mailbox. |
| DeletedItemCount | Number of deleted elements. |
| DumpsterMessagesPerFolderCountReceiveQuota | Maximum number of messages allowed in a folder in the "Recoverable items" folder. |
| DumpsterMessagesPerFolderCountWarningQuota | Number of item a folder in the "Recoverable items" folder can contain before a warning is sent to the user. |
| ItemCount | Number of messages in this mailbox (email, calendar, contacts for example) visible to the user. |
| LastLoggedOnUserAccount | Name of the last logged on user. |
| LastLogOffTime | Last log off time |
| LastLogonTime | Last log on time |
| StorageLimitStatus | Information about the current storage state with respect to the specified limits. |
| TotalDeletedItemSize | Size of items in the "Recoverable Items" mailbox. |
| TotalItemSize | Size of items in mailbox in KB. |
|
|
NOTE: The mailbox usage information is only available for user or shared mailboxes. |
Number of external slots for the Job server configuration
Since the number of concurrent connections for Exchange Online is limited to 3, you should use a dedicated Job server
You can set the number of connections for each connection parameter set and customize the connector definition. For more information, see Advanced Settings for the Exchange Online Connector.
Customizing Synchronization Configuration
Customizing Synchronization Configuration
You have used the Synchronization Editor
You must customize the synchronization configuration in order to compare the One Identity Manager database with the Exchange Online regularly and to synchronize changes.
- You can use variables to create generally applicable synchronization configurations which contain the necessary information about the synchronization objects when synchronization starts. Variables can be implemented in base objects, schema classes or processing method, for example.
- To specify which Exchange Online objects and database object are included in synchronization, edit the scope of the target system connection and the One Identity Manager database connection. To prevent data inconsistencies, define the same scope in both systems. If no scope is defined, all objects will be synchronized.
- Update the schema in the synchronization project, if the One Identity Manager schema or target system schema has changed. Then you can add the changes to the mapping.
|
|
IMPORTANT: As long as synchronization is running, you must not start another synchronization for the same target system. This applies especially, if the same synchronization objects would be processed.
|
For more detailed information about configuring synchronization, see the One Identity Manager Target System