OpenIDM and Office 365 integration

This topic has 7 replies, 3 voices, and was last updated 2 years, 6 months ago by mn.saran.

  • Author
    Posts
  • #7214
     mn.saran
    Participant

    Do we have a sample to integrate openidm with office 365 and do provisioning? please guide me to achieve this.

    #7217
     Brad Tumy
    Participant

    There is not a lot of documentation around this … but you are going to need to use Powershell and the .net connector. The powershell scripts can be found here:

    https://stash.forgerock.org/projects/OPENICF/repos/powershell-connector/browse/Samples

    #10956
     mn.saran
    Participant

    Hi Brad Tumy,

    I dont see a connector example in the link. you have one with sample configurations? I am more interested in the configurationProperties section and the sample values for each attributes.

    Thanks

    #10989
     Mike Jang
    Spectator

    Hi,

    You might examine our PowerShell connector toolkit Azure AD sample.

    It’s based on our “work in progress” updates to our PowerShell connectors. We welcome your feedback.

    Thanks,
    Mike

    #10990
     Mike Jang
    Spectator

    Hi,

    You might examine our PowerShell connector toolkit Azure AD sample.

    It’s based on our “work in progress” updates to our PowerShell connectors. We welcome your feedback.

    Thanks,
    Mike

    #11037
     mn.saran
    Participant

    Mike,

    We dont have Azure AD premium to create or play with accounts. Using on-prem AD which then using the Dir sync to sync with the Azure office 365.

    Am not sure the sample is referencing the Azure AD premium or the base version?

    Please advise.

    Thanks

    #11040
     Mike Jang
    Spectator

    Hi,

    The sample integrates OpenIDM and AzureAD. For the AzureAD version features that you need to integrate with Office 365, you’ll have to refer to Microsoft’s documentation.

    Thanks,
    Mike

    #11866
     mn.saran
    Participant

    Hi Mike,

    How are you?

    I am able to connect the exchange and able to update the mail box (disable) attributes using the below snippet inside the update method of AzureADUpdate.ps1 (sample provided by FR), but the script is giving exception at the end.

    $ExchangeSession = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri “https://outlook.office365.com/powershell-liveid/” -Credential $Credentials -Authentication “Basic” -AllowRedirection

    Exception:
    ConnectorServer.exe Error 0 Exception :
    Type: Org.IdentityConnectors.Framework.Common.Exceptions.ConnectorException
    Message: Exception setting “Uid”: “Cannot convert the “System.Object[]” value of type “System.Object[]” to type “Org.IdentityConnectors.Framework.Common.Objects.Uid”.”
    Source: FrameworkInternal
    Stacktrace: at Org.ForgeRock.OpenICF.Connectors.MsPowerShell.MsPowerShellConnector.Update(ObjectClass objectClass, Uid uid, ICollection`1 valuesToReplace, OperationOptions options)
    at Org.IdentityConnectors.Framework.Impl.Api.Local.Operations.UpdateImpl.Update(ObjectClass objclass, Uid uid, ICollection`1 replaceAttributes, OperationOptions options) in c:\workspace\framework-1.4.1.0\dotnet\FrameworkInternal\ApiLocalOperations.cs:line 1694
    at Org.IdentityConnectors.Framework.Impl.Api.Local.Operations.ConnectorAPIOperationRunnerProxy.Invoke(Object proxy, MethodInfo method, Object[] args) in c:\workspace\framework-1.4.1.0\dotnet\FrameworkInternal\ApiLocalOperations.cs:line 247
    at ___proxy1.Update(ObjectClass , Uid , ICollection`1 , OperationOptions )
    at Org.IdentityConnectors.Framework.Impl.Api.DelegatingTimeoutProxy.Invoke(Object proxy, MethodInfo method, Object[] args) in c:\workspace\framework-1.4.1.0\dotnet\FrameworkInternal\Api.cs:line 1405
    at ___proxy1.Update(ObjectClass , Uid , ICollection`1 , OperationOptions )
    at Org.IdentityConnectors.Framework.Impl.Server.ConnectionProcessor.ProcessOperationRequest(OperationRequest request) in c:\workspace\framework-1.4.1.0\dotnet\FrameworkInternal\Server.cs:line 653 2016-07-06 14:57:52Z 4548 8

    Why Openidm is throwing this error and also if you see my code snippet am creating a new PS Session to connect the exchange but OpenIDM is already connected to MSOnline module , so is there a way I can use the same session to connect the exchange instead of creating new one every time. If the above is the preferred way how OpenIDM manages session created from the scripts?

    Please advise.

Viewing 8 posts - 1 through 8 (of 8 total)

You must be logged in to reply to this topic.

©2020 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?