What is general approach to map BHOLD.Permission.Member => ConnectedApplication.User.Roles? RRS feed

  • Question

  • Hello,

    When I assign a permission to a user in BHOLD and do Import on BHOLD MA, I get that Group.member attribute is updated.

    However, most of our connected applications store permissions in user objects, and not users in permission (aka group in BHOLD MA) objects. That is, I have to remap in some way the BHOLD.Group.Member changes to SomeConnectedSystemMA.User.Roles attribute.
    One approach would be to import changes to FIM portal and use custom workflow to analyze Role.member changes and then use UpdateResource activity for every related user object. But are changes of multi-valued attribute (in this case Role.member) available in a workflow activity?

    What are other, maybe more elegant solutions for such mapping?

    Donatas Vyzas

    Monday, September 2, 2013 12:38 PM

All replies