Chat now with support
Chat with Support

Identity Manager 8.0 - Administration Guide for Connecting to Microsoft Exchange

Managing Microsoft Exchange Environments Setting up Microsoft Exchange Synchronization Base Data for Managing Microsoft Exchange Microsoft Exchange Structure Mailboxes E-Mail Users and E-Mail Contacts Mail-enabled Distribution Groups Dynamic Distribution Group Mail-Enabled Public Folder Extensions for Supporting Exchange hybrid Troubleshooting Appendix: Configuration Parameters for Managing a Microsoft Exchange Environment Appendix: Default Project Template for Microsoft Exchange

Modifying IT Operating Data

Modifying IT Operating Data

If IT operating data changes, you must transfer these changes to the existing user accounts. To do this, templates must be rerun on the affected columns. Before you can run the templates, you can check what the effect of a change to the IT operating data has on the existing user accounts. You can decide whether the change is transferred to the database in the case of each affected column in each affected database.

Prerequisites

  • The IT operating data of a department, cost center, business role or a location was changed.

    - OR -

  • The default values in the IT operating data template were modified for an account definition.

NOTE: If the assignment of an employee to a primary department, cost center, business role or to a primary location changes, the templates are run automatically.

To execute the template

  1. Select the category Active Directory | Basic configuration data | Account definitions | Account definitions.

  2. Select an account definition in the result list.
  3. Select Execute templates in the task view

    This displays a list of all user account, which are created through the selected account definition and whose properties are changed by modifying the IT operating data.

    Old value Current value of the object property.
    New value Value applied to the object property after modifying the IT operating data.
    Selection Specifies whether the modification is applied to the user account.
  4. Mark all the object properties in the selection column that will be given the new value.
  5. Click Apply.

    The templates are applied to all selected user accounts and properties.

Assigning Account Definitions to Employees

Account definitions are assigned to company employees. Indirect assignment is the default method for assigning account definitions to employees. Account definitions are assigned to departments, cost centers, locations or roles. The employees are categorized into these departments, cost centers, locations or roles depending on their function in the company and thus obtain their account definitions. To react quickly to special requests, you can assign individual account definitions directly to employees. You can automatically assign special account definitions to all company employees. It is possible to assign account definitions to the IT Shop as requestable products. A department manager can then request user accounts from the Web Portal for his staff. It is also possible to add account definitions to system roles. These system roles can be assigned to employees through hierarchical roles or directly or added as products in the IT Shop.

In the One Identity Manager default installation, the processes are checked at the start to see if the employee already has a user account in the target system that has an account definition. If no user account exists, a new user account is created with the account definition’s default manage level.

 Note: If a user account already exists and is disabled, then it is re-enabled. You have to alter the user account manage level afterwards in this case.
Prerequisites for indirect assignment of account definitions to employees
  • Assignment of employees and account definitions is permitted for role classes (department, cost center, location or business role).

For detailed information about preparing role classes to be assigned, see the One Identity Manager Identity Management Base Module Administration Guide.

Detailed information about this topic

Assigning Account Definitions to Departments, Cost Centers and Locations

To add account definitions to hierarchical roles

  1. Select the category Active Directory | Basic configuration data | Account definitions | Account definitions.

  2. Select an account definition in the result list.
  3. Select Assign organizations.
  4. Assign organizations in Add assignments.
    • Assign departments on the Departments tab.
    • Assign locations on the Locations tab.
    • Assign cost centers on the Cost center tab.

    - OR -

    Remove the organizations from Remove assignments.

  5. Save the changes.
Related Topics

Assigning Account Definitions to Business Roles

Installed Modules:

Business Roles Module

To add account definitions to hierarchical roles

  1. Select the category Active Directory | Basic configuration data | Account definitions | Account definitions.

  2. Select an account definition in the result list.
  3. Select Assign business roles in the task view.
  4. Assign business roles in Add assignments.

    - OR -

    Remove business roles in Remove assignments.

  5. Save the changes.
Related Topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating