• State Not Answered
  • Replies 3 replies
  • Subscribers 95 subscribers
  • Views 1174 views
  • Users 0 members are here
Options
Related

Recon for the group memberships added in external trusted domain

saba.naaz
over 3 years ago

Hi,

I have a scenario where I have to add the user accounts from primary domain in to the security groups of an external trusted domain . There is a one way trust from external trusted domain to primary domain. I am able to push the memberships in those groups as " Foreign Security Principals(FSP)" but After doing recon for the already present FSP in those groups, i am unable to see them in one identity manager( memberships are not pulled into OneIM)

Please suggest if its possible by changing any mapping or any other way.

Thanks,

Saba

Parents
  • 0 over 3 years ago

    Do you synchronize the external domain as well? I believe not. That's why you are not seeing the memberships. They should be kept in the table DPRAttachedDataStore to avoid data losses if you are adding or removing group membership during provisioning.

  • 0 over 3 years ago in reply to Markus Weiss-Ehlers

    We are synchronizing the external domain and i see the entries  for user-group membership ( in the form of ADSGroup and ObjectSID for user accunt ) from external domain in the DPRattachedDataStrore table but the same is not assigned in the ADSAccountINADSGroup table even when the matching adsaccount exists for the objectSID fetched via sync from external domain. The group also exist in ADSGroup table.Please suggest .

Reply
  • 0 over 3 years ago in reply to Markus Weiss-Ehlers

    We are synchronizing the external domain and i see the entries  for user-group membership ( in the form of ADSGroup and ObjectSID for user accunt ) from external domain in the DPRattachedDataStrore table but the same is not assigned in the ADSAccountINADSGroup table even when the matching adsaccount exists for the objectSID fetched via sync from external domain. The group also exist in ADSGroup table.Please suggest .

Children