and more in a single search tool across platforms. Read the announcement here. |
05/25/2023 05:46 AM
Hello to all,
Thank you for giving your valuable time to this.
We have two ldap/azure directories and due to some reasons, a sync between them cannot be created. So we have to bring Saviynt in between to do the job. We need to sync the groups/entitlements from one ldap to another with the respective membership.
Does anyone have any idea or possible solution for how can this be achieved?
05/27/2023 10:56 AM
This really doesn't sound like a problem you would want to solve with an IGA tool.
05/28/2023 10:52 PM
Yes, we would like to use Saviynt and sync groups/entitlement of one endpoint with another. Even when the group/entitlement or membership is not added/managed through Saviynt. If you have some thoughts about it would appreciate it if you can elaborate on them.
05/28/2023 10:55 PM
@sandeepsingh , sync between two ldaps is something that is managed by the replication setup between the ldap instances. I dont think you will be able to achieve this using Saviynt unless you created dependent tasks to provision accounts/memberships into each of the LDAP endpoints using separate connectors for each ldap endpoints
05/28/2023 11:08 PM
That is what the challenge is. There are certain directory services that cannot be set up for replication. So IGA we want to explore if there is some way we can do it probably by using some custom JARs, etc. Also, dependent tasks will come into the picture if we are taking care of the actual provisioning through Saviynt, challenge is it's not going to happen and we want to take care of old entries as well.