1. Securing ERP
  2. Active Directory Synchronization

Active Directory Synchronization

The bridge for Active Directory synchronizes user account information between Oracle Applications Cloud and Microsoft Active Directory.

Active Directory SynchronizationAfter you provide the bridge configuration details, install and run the bridge for Active Directory. Save the credentials to access Active Directory and Oracle Fusion Application, then return to Security Console AD Bridge setup to complete the user account mapping configuration. When mapping is complete, return to the bridge application and initiate the initial synchronization of users between the source and target applications.

During synchronization, the bridge extracts data from the source and target applications, compares the data, and identifies the task that must be performed on the target application for consistency.

When synchronization completes, the bridge performs the required tasks on the target application. Any errors occurred during synchronization are recorded in the log files for review and correction.

After the initial synchronization is complete, you can configure the bridge to synchronize any changes between the source and target at regular intervals or on-demand.

The bridge for active directory can perform:

  • Full synchronization

  • Incremental synchronization

Full Synchronization

The bridge starts full synchronization or full reconciliation when any of the following conditions are true:

  • The source and target applications are synchronized for the first time.

  • The bridge configuration for the active directory has changed.

  • The Run Full Synchronization button is clicked.

To manually perform a full synchronization:

  1. Click the Bridge for Active Directory tab on the Administration page in the Security Console.

  2. Click User Attribute Mappings.

  3. Expand the On Demand Synchronization section and click Run Full Synchronization.

    Note: To disable Forced Full synchronization, click Cancel Full Synchronization.

Incremental Synchronization

The bridge starts incremental synchronization when: any of the following conditions are true:

  • The source and target were previously synchronized.

  • The bridge configuration for the active directory hasn't changed.

  • The Run Full Synchronization button isn't clicked.

Incremental synchronization can be either on-demand (manually) or at regular intervals (automatically).