Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
tutorial:dev:ad_groups_sync_workflow [2019/03/04 14:16] hanakp [Set aplication properties] |
tutorial:dev:ad_groups_sync_workflow [2019/03/06 09:59] hanakp [Set aplication properties] |
||
---|---|---|---|
Line 48: | Line 48: | ||
With button **Add** you can add any property described bellow and configure workflow. | With button **Add** you can add any property described bellow and configure workflow. | ||
- | * **idm.pub.acc.syncRole.role.canBeRequested** - (true/ | + | * **idm.pub.acc.syncRole.role.canBeRequested** - (true/false, default: |
- | * **idm.pub.acc.syncRole.system.mapping.objectClassName** - this is important to provisioning member attribute of identity. It is an object class name of identity schema. It supposedly can stay as " | + | * **idm.pub.acc.syncRole.system.mapping.objectClassName** - (default: \_\_ACCOUNT\_\_) |
- | * **idm.pub.acc.syncRole.system.mapping.attributeMemberOf** - it is the name of an attribute in a mapping of identity provisioning. It is usually memberOf or ldapGroup. This attribute will be added to role's mapping with tramsformation script (which will be set later). - | + | * **idm.pub.acc.syncRole.system.mapping.attributeMemberOf** |
- | * **idm.pub.acc.syncRole.system.mapping.attributeRoleIdentificator** - the name of an attribute in the connector, which holds the distinguished name of a role. | + | * **idm.pub.acc.syncRole.system.mapping.attributeRoleIdentificator** |
- | * **idm.pub.acc.syncRole.provisioningOfIdentities.system.code** - it is code (name) of the system, where identities have provisioning. | + | * **idm.pub.acc.syncRole.provisioningOfIdentities.system.code** |
- | * **idm.pub.acc.syncRole.identity.eav.externalIdentifier.code** - code of eav of a distinguished name of identities. it is used in creating entity in the situation of a Missing entity. It is important when groups in AD already have members and some of the identities DNs cannot be calculated again. | + | * **idm.pub.acc.syncRole.identity.eav.externalIdentifier.code** |
- | * **idm.pub.acc.syncRole.roleCatalog.ResolveCatalog** - (true/ | + | * **idm.pub.acc.syncRole.roleCatalog.ResolveCatalog** - (true/false, default: true) - This property will disable creating of catalogue. |
- | * **idm.pub.acc.syncRole.update.resolveMembership** - (true/ | + | * **idm.pub.acc.syncRole.update.resolveMembership** - (true/false, default: |
- | * **idm.pub.acc.syncRole.roles.allToOneCatalog** - Add name of catalog. all roles will be added to this ' | + | * **idm.pub.acc.syncRole.roles.allToOneCatalog** |
- | * **idm.pub.acc.syncRole.roles.attributeNameOfMembership** - Default value 'member', | + | * **idm.pub.acc.syncRole.roles.attributeNameOfMembership** - (default: |