To enable automated reconcile users with another system, we need to use the reconciliation functionality in OpenIAM. At a high level, the reconciliation engine is responsible for:

• Getting data from the connector and bringing it into OpenIAM
  • This can be done either on an ad-hoc basis or it can be a regularly scheduled task.
• Mapping the incoming data from the source to objects in the OpenIAM system
• Passing the incoming data to the provisioning service to update downstream systems.
• Compare data in Open IAM with data from connector and make different actions according situations:
  • Object exists in IDM and object exists in Target system.
  • Object exists in IDM and object not exists in Target system.
  • Object not exists in IDM and object exists in Target system.
  • Object deleted in IDM and object exists in Target system.

Configure reconciliation

The configure reconciliation follow the steps below:

• Goto Webconsole -> Managed systems -> select managed system -> click "Reconciliation" on the left menu
• For create new reconciliation - click on Add. You will the screen below. Complete the form based on the table below.

Configuration examples:

• [Reconciliation for Linux connector] (../../connectorconfig/linux#5.reconciliation).
• [Reconciliation for AD connector] (../../developerguide/9-synchronization).