Active Directory Groups
I have searched these forums and the IDM manuals high and low for the past two weeks and I am coming up short on how to manage Active Directory groups with IDM. I don't know how much different my situation is from others, but basically I have an oracle table that is the source of the AD username and groups that the user is apart of and I am troubled on how to get the data from the table to flow into AD with no manual interaction.
I could write and external script to perform this action, but I would like to incorporated this into IDM. Any feedback or guidance would be appreciated.
[601 byte] By [
cpbradya] at [2007-11-27 10:57:26]
# 1
Hi there
Im not sure if i get your question but from what i understand what you could potentially do is to link the oracle table to IDM as a resource from the u can go through each user a grab the groups they. Now u can use the name of each group to build the DN that you will use to populate the users groups in AD (accounts[AD].groups)
Hope that will help a bit
# 3
Few questions before I answer your question
1) is it a one time activity?
2)would you like to update the AD group membership As soon as the oracle table is updated?
# 4
The activity would be more of an active sync type of operation. I would have a script that updates the table/view every couple of minutes or sooner.
Yes, it would like the change to be done as soon as the table is updated.
The groups are in a csv list in a column in the table if that helps any.
