立即与支持人员聊天
与支持团队交流

Active Roles 8.1.1 - Synchronization Service Administration Guide

Synchronization Service overview Deploying Synchronization Service Getting started Connections to external data systems
External data systems supported with built-in connectors
Working with Active Directory Working with an AD LDS (ADAM) instance Working with Skype for Business Server Working with Oracle Database Working with Oracle Database user accounts Working with Exchange Server Working with Active Roles Working with One Identity Manager Working with a delimited text file Working with Microsoft SQL Server Working with Micro Focus NetIQ Directory Working with Salesforce Working with ServiceNow Working with Oracle Unified Directory Working with an LDAP directory service Working with an OpenLDAP directory service Working with IBM DB2 Working with IBM AS/400 Working with IBM RACF Working with MySQL database Working with an OLE DB-compliant relational database Working with SharePoint Working with Microsoft 365 Working with Microsoft Azure Active Directory Configuring data synchronization with the SCIM Connector Configuring data synchronization with the Generic SCIM Connector Objects and operations supported by the SCIM Connector Example of using the Generic SCIM Connector for data synchronization
Using connectors installed remotely Creating a connection Renaming a connection Deleting a connection Modifying synchronization scope for a connection Using connection handlers Specifying password synchronization settings for a connection
Synchronizing identity data Mapping objects Automated password synchronization Synchronization history Scenarios of use Developing PowerShell scripts for attribute synchronization rules Using PowerShell script to transform passwords

Synchronization Service overview

Within the same organization, identity information can be stored in many different data systems, such as directories, databases, or formatted dump files. To manage identity information and synchronize it between these data systems, administrators sometimes have to spend a considerable amount of time and effort. On top of that, performing the data synchronization tasks manually is error-prone and can lead to the duplication of information and incompatibility of data formats.

With Synchronization Service, a component of Active Roles (formerly known as ActiveRoles®), you can completely automate the process of identity data synchronization between the data systems used in your enterprise environment.

Synchronization Service increases the data management efficiency by allowing you to automate the creation, deprovision, and update operations between the data systems you use. For example, when an employee joins or leaves the organization, the related information in the data systems managed by Synchronization Service is automatically updated, thereby reducing your administrative workload and getting the new users up and running faster.

The use of scripting capabilities provides a flexible way to automate day-to-day administration tasks and integrate the administration of managed data systems with other business processes. By automating regular synchronization tasks, Synchronization Service allows administrators to concentrate on strategic issues, such as planning the directory, increasing enterprise security, and supporting business-critical applications.

In order to synchronize identity data between external data systems, you must connect Synchronization Service to these data systems through connectors. A connector enables Synchronization Service to access specific data system to read and synchronize data in that system according to your settings.

Out of the box, Synchronization Service includes a number of built-in connectors. The built-in connectors do not require any license file.

Synchronization Service features and benefits

Synchronization Service offers the following major features:

  • Bidirectional synchronization

  • Delta processing mode

  • Synchronization of group membership

  • Windows PowerShell scripting

  • Attribute synchronization rules

  • Rule-based generation of distinguished names

  • Scheduling capabilities

  • Extensibility

Bidirectional synchronization

Bidirectional synchronization allows you to synchronize all changes occurred to identity information between your data systems. Using this type of synchronization, you can proactively prevent potential identity information conflicts between different data sources.

NOTE: Bidirectional synchronization is unavailable for some of the supported data systems. For more information, see External data systems supported with built-in connectors.

Delta processing mode

Delta processing mode allows you to synchronize identities more quickly by processing only the data that has changed in the source and target connected systems since their last synchronization.

Both the full mode and the delta mode provide you with the flexibility of choosing the appropriate method for your synchronization tasks.

NOTE: Delta processing mode is unavailable for some of the supported data systems. For more information, see External data systems supported with built-in connectors

自助服务工具
知识库
通知和警报
产品支持
下载软件
技术说明文件
用户论坛
视频教程
RSS订阅源
联系我们
获得许可 帮助
技术支持
查看全部
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级