Identity Manager Driver for Google Apps

0 Likes
over 11 years ago

Recently there has been a growth of users wanting more e-mail storage, more collaboration and greater client access capabilities. IT professional are stuck administrating a multitude of services and applications. Now with Google Apps, it is possible to have all these features and more, but having your email and collaboration system disconnected from your production environment isn’t the best solution.



With the Identity Manager driver for Google Apps, you can now keep your user accounts in Google Apps connected with the user accounts in your production environment. It will keep passwords and user account details in sync, without extra work required from the IT professional.



Features


The driver only supports one-way synchronization, and thus no data can be retrieved from the Google Apps domain. The driver does not support reading attributes from the Google Apps domain so matching policies will not work.


The following features has been implemented:



  • User creation, updates and deletion.

  • Group creation, updates and deletion.

  • Synchronize passwords to Google Apps Domain



Installation


Before you start make sure that you are running at least IDM 3.6 and that you have enabled the Provisioning API in your Google Apps domain.


Copy the googleDriver.jar file to the relevant location:

Windows: C:\novell\nds\lib

Unix: /opt/novell/eDirectory/lib/dirxml/classes/


Restart the eDirectory


Goto your Identity Manager Driverset and Add a driver.


Import the configuration from the client and select the googleDriver.xml file.

In the driver configuration make sure that the Authentication ID is set to a valid Domain admin and that the Authentication context is set to the Google Apps Domain to be managed. The Application password should be set to the password of the relevant admin.


Eg: Authentication ID: admin@test.domain.com

Authentication context: test.domain.com



Final Word



I urge anybody that used this driver or that wants to use this driver to please post if you require extra functionality. The driver was only created for the current set of features, but I am willing to expand it if necessary.


Labels:

How To-Best Practice
Comment List
Anonymous
Parents Comment Children
  • Sorry for replying sooner.
    Currently the driver has no support for reading data from google, as the provisioning API from google does not support it. I'm am looking at using the reporting API to achieve this functionality. The downside to the reporting API is that it only supports limited search functionality, and thus bandwidth would become an implication, as I would have to retrieve all data, about all users.
    Currently no-one has requested this functionality so I've not given any attention to it.

    Please let me know if you are interested/require this functionality and I'll see if I can fit it into my schedule.
Related Discussions
Recommended