none
Import group membership from HR system RRS feed

  • Question

  • The company's HR system not only is the source of truth for managed users but also is a source for the membership of a sub set of groups used within AD

    A SQL view of the group membership is available with a basic structure of GroupName, UserID

    The FIM solution currently uses a codeless / declarative setup.

    As expected the HR MA is a SQL connector

    Tried to setup a SQL MA for group object type with an inbound sync rule in FIM hoping that the user will be added to the member attribute in the group object - but not much success

    What is the best way to achieve this please without necessarily resorting to using a PowerShell MA. Details and not just a high level overview would be appreciated

    Thanks

    Friday, December 9, 2016 3:12 PM

All replies

  • The view needs to be integrated in to the existing HR MA that you have, or if you want to use a second MA, you need to also have records for all of your users in the view. Typically this means you need to have an Object Type column configured, and you also want the UserID column for the group membership to be marked as a reference in the MA settings.

    Thanks,
    Brian

    Consulting | Blog | AD Book

    • Proposed as answer by Todd Heron Friday, December 9, 2016 6:51 PM
    Friday, December 9, 2016 5:04 PM
    Moderator