Run a Microsoft Active Directory (AD) Bridge
You can run a Microsoft Active Directory (AD) Bridge to synchronize Oracle Identity Cloud Service with AD immediately.
When the interval you specified elapses, Oracle Identity Cloud Service synchronizes with the directory structure so that any new, updated, or deleted user or group records are transferred into Oracle Identity Cloud Service. Because of this, the state of each record is synchronized between AD and Oracle Identity Cloud Service.
- Full import: The AD Bridge polls AD and retrieves data associated with all user and groups that you selected in the Select organizational units (OUs) for users and Select organizational units (OUs) for groups panes of the Configuration tab for the bridge. This data represents users and groups that were created, modified, or removed in AD. As a best practice, Oracle recommends that you perform a full import the first time you run the AD Bridge. See Configure a Microsoft Active Directory (AD) Bridge for more information about the Configuration tab.
- Incremental import: Similar to a full import, but for this type of import, the AD Bridge polls AD and retrieves only user and group data that changed since you last used the AD Bridge to import users and groups into Oracle Identity Cloud Service.
By running the AD Bridge, you can propagate changes for Oracle Identity Cloud Service users in AD. After users are imported into Oracle Identity Cloud Service through the bridge, if you activate or deactivate a user, modify the user's attribute values, or change the group memberships for the user in Oracle Identity Cloud Service, then these changes will be reflected in AD.
You can also use the AD Bridge to view a synchronization log of the communication between Oracle Identity Cloud Service and AD.