• State Not Answered
  • Replies 5 replies
  • Subscribers 96 subscribers
  • Views 7730 views
  • Users 0 members are here
Options
Related

what is the best way to configure data warehouse, which is responsible for managing access information for more than one applications? Both Synchronization and (de)provisioning shall be performed on the data warehouse.

kavita.digari
over 6 years ago

I've a central repository(target system) for many of my applications which keeps user accounts, roles (along with application mapping) and user-role association. I want it to integrate within D1IM v7, so that, for all applications, data synchronization data and provisioning of roles is done using D1IM to a single target. Any suggestion what would be the best way to implement it in D1IM.

 

Parents
  • 0 over 6 years ago
    Is it SQL or LDAP? If SQL, then as I said configure a DPR Namespace for the central repository and a seperate Custom Target System for each of the applications.

    As long as the schema gives you the ability to differentiate between App1\Username and App2\Username (and other systems) then the sync project can either filter objects by target system. Alternatively you might be able to create a single sync which imports in all users, containers and groups from all systems in the central repository, but which populates the UID_UNSRootB value for each object so that Identity Manager knows which system it belongs to.

    It all depends on how much functionality you need for apps integrated via the central repository.

    Out of curiosity, is the repository a commercial aggregation / reporting platform or is it just an in-house SQL database that is used by multiple applications?

    And, do you need full provisioning capabilities or just read/reconcilation access?
Reply
  • 0 over 6 years ago
    Is it SQL or LDAP? If SQL, then as I said configure a DPR Namespace for the central repository and a seperate Custom Target System for each of the applications.

    As long as the schema gives you the ability to differentiate between App1\Username and App2\Username (and other systems) then the sync project can either filter objects by target system. Alternatively you might be able to create a single sync which imports in all users, containers and groups from all systems in the central repository, but which populates the UID_UNSRootB value for each object so that Identity Manager knows which system it belongs to.

    It all depends on how much functionality you need for apps integrated via the central repository.

    Out of curiosity, is the repository a commercial aggregation / reporting platform or is it just an in-house SQL database that is used by multiple applications?

    And, do you need full provisioning capabilities or just read/reconcilation access?
Children
No Data