Administration Guide › Managed Endpoint Accounts › Reverse Synchronization with Endpoint Accounts › Policies for Reverse Synchronization
Policies for Reverse Synchronization
When an account is created or modified on an endpoint, reverse synchronization policies can take appropriate actions in response. For example, a user creates some Active Directory accounts in several OUs in the corporate domain. Also, the user modifies some Microsoft Exchange accounts. You can detect the new and changed accounts and provide appropriate actions as a response using reverse synchronization account policies.
You can do the following using reverse synchronization:
- Configure a policy to accept the new account, reject it, or send it for workflow approval.
- Configure a policy to accept a change to an attribute, revert it to the original attribute, or send it for workflow approval.
- When an account is sent for workflow approval, the approver can perform one of the following actions:
- Reject it (delete/suspend it from the endpoint or change the value to match the CA IdentityMinder user store value)
- Accept it and update the CA IdentityMinder user store to match the account
- Assign it to a user in User Console (in the case of account creation)
Copyright © 2013 CA.
All rights reserved.
|
|