Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Insert excerptIL:External Directory Prerequisites V23IL:External Directory Prerequisites V23nopaneltrueEmpowerID Microsoft SQL connector allows organizations to bring the user data (user accounts, profiles, and roles) in their SQL server to EmpowerID, where it can be managed and synchronized with data in any connected back-end user directories. When EmpowerID inventories an SQL server, it creates an account in the EmpowerID Identity Warehouse for each SQL user, a group for each SQL profile, and an EmpowerID Business Role for each SQL role. Once connected, you can manage this data from EmpowerID in the following ways:

  • Provision new users

  • Edit user attributes

  • Delete users

Step 1 – Create a Microsoft SQL account store in EmpowerID

  1. On the navbar, expand Admin > Applications and Directories and then click Account Stores and Systems.

  2. On the Account Stores page, click Create Account Store. Insert excerptIL:Create Account Store ScreenIL:Create Account Store Screennopaneltrue

  3. Under System Types, search for SQL.

  4. Click Microsoft Sql Server to select the type and then click Submit.

    Image RemovedImage Added

  5. On the Create MSSql Connector Settings page that appears, fill in the following information:

    • Name — Enter a name for the account store

    • User Name — Enter the user name of the SQL Server Administrator

    • Password — Enter the password for the SQL Server Administrator

    • Server — Enter the FQDN or IP address of the SQL Server

    • Is Remote (Requires Cloud Gateway) — This setting appears for account stores with local directories, such as Active Directory, LDAP, SAP, etc. When enabled, this tells EmpowerID to use the Cloud Gateway Connection for that account store. The Cloud Gateway Connection must be installed on an on-premise machine. For installation information, please see Installing the EmpowerID Cloud Gateway Client.

  6. When ready click Submit to create the account store.

  7. EmpowerID creates the account store and the associated resource system. The next step is to configure the attribute flow between the account store and EmpowerID.

Step 2 – Configure Attribute Flow

Insert excerpt
IL:Configure Attribute Flow Rules-V21
IL:Configure Attribute Flow Rules-V21
nopaneltrue
Now that the attribute flow has been set, the next steps include configuring the account store and enabling EmpowerID to inventory it.

Step 3 – Configure account store settings

  1. On the Account Store and Resource System page, click the Account Store tab and then click the pencil icon to put the account store in edit mode.


    This opens the edit page for the account store. This page allows you to specify the account proxy used to connect EmpowerID to your SQL server as well as how you want EmpowerID to handle the user information it discovers there during inventory. Settings that can be edited are described in the table below the image.


    Insert excerpt
    IL:SQL Server Account Store Settings - V21
    IL:SQL Server Account Store Settings - V21
    nopaneltrue

  2. Edit the account store as needed and then click Save to save your changes.

Next, enable the Account Inbox permanent workflow to allow the Account Inbox to provision or join the user accounts in Oracle to EmpowerID Persons as demonstrated below.

Tip

EmpowerID recommends using the Account Inbox for provisioning and joining.

Step 4 – Enable the Account Inbox Permanent Workflow

Insert excerpt
IL:Enable Account Inbox PW - V21
IL:Enable Account Inbox PW - V21
nopaneltrue

Insert excerpt
IL:External Stylesheet
IL:External Stylesheet
nopaneltrue
Step 5 – Monitor Inventory

Insert excerpt
IL:Monitor Inventory - V21
IL:Monitor Inventory - V21
nopaneltrue

Div
stylefloat: left; position: fixed;

IN THIS ARTICLE

Table of Contents
maxLevel4
minLevel2
stylenone

Insert excerpt
IL:External Stylesheet
IL:External Stylesheet
nopaneltrue
Insert excerpt
IL:External Stylesheet
IL:External Stylesheet
nopaneltrue