This topic has 1 reply, 2 voices, and was last updated 3 years, 2 months ago by Bill Nelson.

  • Author
  • #23953


    I have data sync from openidm to opendj and for few attributes from opendj to openidm. currently opendj confidentiality feature is disabled. If we enable that is going to impact data sync from DJ to Openidm. And another question can I sync opendj operational attributes to openidm ?


     Bill Nelson

    I have not tested livesync against a DJ server with confidentiality enabled, but it should not be a problem. The purpose of data confidentiality is to encrypt data at rest, but it is still available to LDAP clients that are allowed access to this data (based on ACIs) and the data is transmitted in the clear, so I don’t see enabling livesync as an issue. Its a simple test, however, to determine this; just enable the feature, add a new record, and see what happens (keep in mind that enabling this feature does not affect existing data in the DB, only new entries).

    Yes, you can sync operational attributes back to IDM, but only if you explicitly define/map them in the provisioner and sync.json files.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?