Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Sync two ldap based endpoints with entitlement and menbership

sandeepsingh
New Contributor
New Contributor

‎05/25/2023 05:46 AM

Hello to all,

Thank you for giving your valuable time to this.

We have two ldap/azure directories and due to some reasons, a sync between them cannot be created. So we have to bring Saviynt in between to do the job. We need to sync the groups/entitlements from one ldap to another with the respective membership.

Does anyone have any idea or possible solution for how can this be achieved?

0 Kudos
4 REPLIES 4

yogesh
Regular Contributor III
Regular Contributor III

‎05/27/2023 10:56 AM

This really doesn't sound like a problem you would want to solve with an IGA tool.

0 Kudos

sandeepsingh
New Contributor
New Contributor
In response to yogesh

‎05/28/2023 10:52 PM

Yes, we would like to use Saviynt and sync groups/entitlement of one endpoint with another. Even when the group/entitlement or membership is not added/managed through Saviynt. If you have some thoughts about it would appreciate it if you can elaborate on them.

0 Kudos

shivmano
Regular Contributor III
Regular Contributor III

‎05/28/2023 10:55 PM

@sandeepsingh , sync between two ldaps is something that is managed by the replication setup between the ldap instances. I dont think you will be able to achieve this using Saviynt unless you created dependent tasks to provision accounts/memberships into each of the LDAP endpoints using separate connectors for each ldap  endpoints 

0 Kudos

sandeepsingh
New Contributor
New Contributor
In response to shivmano

‎05/28/2023 11:08 PM

That is what the challenge is. There are certain directory services that cannot be set up for replication. So IGA we want to explore if there is some way we can do it probably by using some custom JARs, etc. Also, dependent tasks will come into the picture if we are taking care of the actual provisioning through Saviynt, challenge is it's not going to happen and we want to take care of old entries as well.

0 Kudos
Copyright © 2024 Khoros, LLC