Chat now with support
Chat with Support

Quick Connect Sync Engine 5.5 - Administrator Guide

One Identity Quick Connect Overview Deploying One Identity Quick Connect Sync Engine Getting started Connections to external data systems Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Appendices

Configuring a rule entry

This section provides instructions on how to configure a rule entry in the Define Entry dialog box that looks similar to the following:

 

To configure a text entry

  1. Under Entry type, select Text.
  2. In the Text value box, type the value.
  3. Click OK.

To configure an attribute-based entry

  1. Under Entry type, select Attribute.
  2. Click Select to select the attribute whose value you want to use, and then click OK.
  3. If you want the entry to include the entire value of the attribute, select the All characters option. Otherwise, click the Specified characters option, and then specify the characters to include in the entry.
  4. Optionally, click the If value is shorter, add filling characters at the end of entry value option to specify a character to add to the entry.
  5. Optionally, specify Advanced settings.
  6. When finished, click OK.

Using workflow step handlers

Synchronizing identity data > Managing workflow steps > Using workflow step handlers

Workflow step handlers allow you to automatically perform custom actions either before running a workflow step or after the workflow step run results have been committed (written) to the data system. Out of the box, One Identity Quick Connect Sync Engine includes a single predefined handler type that can automatically execute your custom PowerShell script and thus perform the desired action.

You can also develop and implement your own handler types. For more information, see the Software Development Kit (SDK) supplied with this One Identity Quick Connect Sync Engine version.

To create, modify, or delete handlers for a workflow step, you can use the Step Handlers tab in the workflow step properties.

To create a workflow step handler

  1. In the Quick Connect Administration Console, open the Workflows tab.
  2. Click the name of the appropriate workflow.
  3. Click the name of the workflow step for which you want to create a handler, and then click the Step Handlers tab.
  4. Click Add handler, and then follow the steps in the wizard to create your handler.

To modify a workflow step handler

  1. In the Quick Connect Administration Console, open the Workflows tab.
  2. Click the name of the appropriate workflow.
  3. Click the name of the workflow step whose handler you want to modify, and then click the Step Handlers tab.
  4. Click the name of the handler you want to modify.
  5. Modify the handler settings as necessary. When you are finished, click OK.

    You can also do the following:

    • Change the order in which handlers are activated. One Identity Quick Connect Sync Engine activates handlers in the order in which they appear in the list. To move a handler in the list, use the Move up and Move down links below the handler.
    • Disable or enable the handler. You can enable or disable existing handlers. To do so, use the Enable or Disable link below the handler.

  6. When you are finished, click Save.

To delete a workflow step handler

  1. In the Quick Connect Administration Console, open the Workflows tab.
  2. Click the name of the appropriate workflow.
  3. Click the name of the workflow step whose handler you want to delete, and then click the Step Handlers tab.
  4. Click Delete below the handler you want to delete.

Example: Synchronizing group memberships

Synchronizing identity data > Managing workflow steps > Example: Synchronizing group memberships

This example illustrates how to configure a provisioning step to synchronize group memberships from an Active Directory domain to an AD LDS (ADAM) instance. The example demonstrates how to create rules in the step to synchronize the value of the member attribute in the Active Directory domain to the member attribute in AD LDS (ADAM).

To synchronize the member attribute

  1. Follow the steps described in the Creating a provisioning step section until you reach the wizard page titled Specify provisioning rules.
  2. In the Initial Attribute Population Rules element, click the down arrow on the leftmost button below the list to select Forward Sync Rule.
  3. In the dialog box that opens, add the following pair of attributes:
    1. Source item: member attribute (Active Directory)
    2. Target item: member attribute (AD LDS)

    For more information about the options in this dialog box, see Configuring a forward sync rule.

  4. When you are finished, click OK.
  5. Follow the steps in the wizard to complete the creation of the provisioning step.

Example: Synchronizing multivalued attributes

Synchronizing identity data > Managing workflow steps > Example: Synchronizing multivalued attributes

This example illustrates how to configure a provisioning step to synchronize multivalued attributes from an Active Directory domain to an AD LDS (ADAM) instance. The example demonstrates how to create rules in the step to synchronize the value of the otherTelephone attribute in the Active Directory domain to the otherTelephone attribute in AD LDS (ADAM).

To synchronize the otherTelephone attribute

  1. Follow the steps provided in the Creating a provisioning step section until you reach the wizard page titled Specify provisioning rules.
  2. In the Initial Attribute Population Rules element, click the down arrow on the leftmost button below the list to select Forward Sync Rule.
  3. In the dialog box that opens, add the following pair of attributes:
    • Source item: otherTelephone attribute (Active Directory)
    • Target item: otherTelephone attribute (AD LDS)

    For more information about the options in this dialog box, see Configuring a forward sync rule.

  4. When you are finished, click OK.

Follow the steps in the wizard to complete the creation of the provisioning step.

Related Documents