Identity Manager 8.1 - Administration Guide for Connecting to Native Databases through Database Systems Integration Module

Database Systems Integration Module Installing DSI Working with Oracle Database Working with MSSQL Working with SAP HANA Troubleshooting

Synchronization project for database level

Synchronization project for database level

The following procedure describes how to create and configure synchronization projects for database-level projects in Microsoft SQL.

To create a synchronization project
  1. Open the Synchronization Editor.

  2. On the Start page, select Start a new Synchronization Project.
  3. On the Choose target system page, select the Native Database Connector check box and click Next.
  4. Select Create New System Connection.
  5. Select SQL Server.
  6. Provide the name of the SQL server required to establish a connection in the SQL Server Name field.
  7. Provide the Username and Password for the privileged service account or an account that has the sysadmin server role.
  8. Select the required database to manage database-level principals.
  9. Provide the display name and the identifier.
  10. Select the DSI_MSSQL_DBLevel_Configuration.xml configuration file available at DSI/ConfigFiles in the DSI module and click Next.
  11. Review the preferences and click Next until the Save Configuration window is displayed. Ensure that the configuration field is empty.
  12. Click Next.
  13. Review the preferences and click Finish.

    The schema loading window is displayed.

  14. After the schema is loaded, the Template Selection page is displayed.
  15. Select MSSql DB Level Template and click Next.

    Follow on-screen instructions until the Provisioning Capability window is displayed.

  16. Select the synchronization server and click Finish.

    The synchronization project is created successfully.

After the creation of the synchronization project, set the variables value in the DefaultUserPassword field.

Connecting to multiple databases through a single synchronization project

Connecting to multiple databases through a single synchronization project

Database Systems Integration (DSI) provides an additional template for the Microsoft SQL database that allows it to connect to multiple databases through a single synchronization project in Microsoft SQL at database-level.

The ability to connect to multiple databases through a single synchronization project simplifies the process of maintaining multiple database connections, as the databases share a single set of configurations including mappings, workflows, and data operations.

To create connections to multiple databases through a single synchronization project

  1. In the Synchronization Editor, open the synchronization project for MS SQL database-level connection.

  2. In the configuration pane, navigate to the base object and click the wizard icon to set up a connection to the database.
  3. Follow the steps specified in the Synchronization project for database level section to add base objects.

  4. Commit the changes to the database.

    A new startup configuration gets created for the base object connection.

Mapping sets and object types

Mapping sets and object types

The Microsoft SQL template is classified into a server-level template and a database-level template. The mapping sets and the corresponding object types are different for server-level and database-level templates.

Mapping sets and object types for the server-level template

Mapping sets and object types for the server-level template

The Microsoft SQL server-level template has the following mapping sets:

  • Logins: Maps all logins thataccess the SQL server, such as, SQL_LOGIN, WINDOWS_LOGIN, and WINDOWS_GROUP, into One Identity Manager.
  • ServerRoles: Maps all server-level roles and user-defined server roles into One Identity Manager.
  • LoginHasRole: Maps all login and their role membership into One Identity Manager.
  • ServerRoleinServerRole: Maps all roles and their role membership into One Identity Manager.

NOTE: Before updating the default mapping sets, you should save the backup of the One Identity Manager database.

Mapping object types between SQL tables and One Identity Manager tables

The following table describes here briefs about the mapping of server object types in MS SQL Server to the corresponding UNS tables of One Identity Manager.

Table 2: Mapping table for MS SQL server-level object types

MS SQL server-level object types

Mapping set name MS SQL objects One Identity Manager table
Login sys.server_principals UNSAccountB
ServerRoles sys.server_principals UNSGroupB
LoginHasRoles sys.server_role_members UNSAccountBInUNSGroupB
ServerRoleInServerRole sys.server_role_members UNSGroupBInUNSGroupB
Related Documents