Connections to external data systems
Connections to external data systems
External data systems supported out of the box
This section provides information on working with external data systems supported by One Identity Quick Connect Sync Engine out of the box. For instructions on working with other types of external data systems, see the documentation supplied with the Quick Connect packages that support those data systems.
This section covers:
Working with ActiveRoles Server
To create a connection to ActiveRoles Server, you need to use One Identity Quick Connect Sync Engine in conjunction with a special connector called Quest ActiveRoles Server Connector.
The Quest ActiveRoles Server Connector supports the following One Identity Quick Connect Sync Engine features:
Table 7: Supported features
Allows you to read and write data in the connected data system.
Delta processing mode
Allows you to process only the data that has changed in the connected data system since the last synchronization operation, thereby reducing the overall synchronization operation time.
Allows you to synchronize user passwords from an Active Directory domain to the connected data system.
The Quest ActiveRoles Connector supports linked attributes in the Active Directory schema. Linked attributes allow you to associate one object with another object. Linked attributes exist in pairs:
- Forward link attribute. This is a linked attribute that exists on a source object (example: the member attribute on the Group object). Forward link attributes can be single-valued or multivalued.
- Back link attribute. This is a linked attribute that can be specified on a target object (example: the memberOf attribute on the User object). Back link attributes are multivalued and they must have a corresponding forward link attribute. Back link attributes are not stored in Active Directory. Rather, they are calculated based on the corresponding forward link attribute each time a query is issued.
In this section:
Creating an ActiveRoles Server connection
One Identity Quick Connect Sync Engine supports ActiveRoles Server out of the box, so you can create connection to ActiveRoles Server after you install One Identity Quick Connect Sync Engine on your computer.
To create a new connection
Click Finish to create a connection to Quest ActiveRoles Server.
- In the Quick Connect Administration Console, open the Connections tab.
- Click Add connection, and then use the following options:
- Connection name. Type a descriptive name for the connection.
- Use the specified connector. Select Quest ActiveRoles Server Connector.
- Click Next.
- On the Specify connection settings page, use the following options:
- Connect to. Allows you to specify the ActiveRoles Server Administration Service to be used by the Short Product Name. You can use one of the following options:
- Administration Service on the specified computer. Type the name of the computer running the Administration Service you want the Short Product Name to use.
- Any Administration Service of the same configuration. Specify any Administration Service whose database holds the necessary configuration: type the DNS name of the computer running that Administration Service. If ActiveRoles Server replication is used to synchronize configuration data, this must be any Administration Service whose database server acts as the Publisher for the configuration database.
- Access ActiveRoles Administration Service using. Allows you to specify an authentication option to access the ActiveRoles Administration Service. You can use one of the following options:
- Quick Connect service account. Allows you to access the Administration Service in the security context of the user account under which the Quick Connect Service is running.
- Windows account. Allows you to access the Administration Service in the security context of the user account whose user name and password you specify below this option.
- Test Connection. Allows you to verify the specified connection settings.