A typical large enterprise has thousands of applications, and these applications can be categorized into different buckets. There are Software-as-a-Service (SaaS) applications, homegrown applications, and on-premises applications. Customers are also building their applications in the cloud. The challenge with managing these different types of applications is that for each application, you must have administrators managing users, and administrators or developers protecting resources within the applications.
Application integration is providing one single place where customers can manage their users and the access they have to their company's applications, as well as protect the resources associated with these applications. Oracle Identity Cloud Service provides a centralized location that customers can use to integrate all of their SaaS, homegrown, on-premises, and custom cloud applications.
Two key aspects of application integration are provisioning and synchronization. Provisioning allows you to use Oracle Identity Cloud Service to manage the lifecycle of user accounts in applications. This includes creating, modifying, disabling, enabling, and deleting user accounts and their profiles across applications.
For example, when you grant a user access to an application such as Google Suite, then an account is created for the user automatically in Google Suite. You can use Oracle Identity Cloud Service to add users to multiple applications and deprovision the users from these applications when conditions change for the users (for example, when they change roles or leave your organization).
Synchronization allows you to control how operations such as creating and deleting accounts in applications are reflected in Oracle Identity Cloud Service. This consists of bringing in user and group data from applications, and creating, modifying, or deleting the corresponding user accounts and groups in Oracle Identity Cloud Service.
Synchronization provides an inbound link between your applications and Oracle Identity Cloud Service. Oracle Identity Cloud Service can synchronize with your applications so that any account data that’s created, updated, or removed on the applications is pulled into Oracle Identity Cloud Service and stored for the corresponding Oracle Identity Cloud Service users and groups. So, if a user is deleted in one of your applications, then this change will be propagated into Oracle Identity Cloud Service. Because of this, the state of each record is synchronized between your applications and Oracle Identity Cloud Service.