+

Search Tips   |   Advanced Search

Enable write-back for flows

Changes that are made in the target directory server can be propagated back to the endpoint by enabling write-back in a flow for selected attributes.


Before you begin

A global write-back option is provided as a safety feature, which we can use to turn off write-back for all flows. However, when you turn off the write-back feature globally, it prevents write-back for all flows, including the specific flows where you might want to enable write-back. Hence, first ensure that the write-back feature is enabled at a global level for all flows.

To enable the global write-back feature, in the navigation pane, under Directory Server, click Write-back and then select Write-back enabled. A green tick mark is displayed next to Write-back.

After you enable the global write-back feature, you must complete the steps in the following procedure to enable write-back for a specific flow.


About this task

Only the changes that are made to person entries that are targets of this flow are candidates for write-back operations.


Procedure

  1. To enable write-back for a specific flow, on the Flows tab, click the name of the flow and then click Edit. The configuration page for the flow is opened.
  2. Click the Write-back tab.
  3. Select Enable to enable the write-back option for this flow.
  4. Specify the attributes in the directory server that must trigger a write-back operation and map it to the attribute in the endpoint.

    1. Click Add Attribute and select the attribute from the list of attributes in the endpoint. A new row is displayed with the selected attribute name under the Endpoint Attribute column.
    2. Under Directory Server Attribute / Assignment, specify the attribute name in the directory server that must map to the endpoint attribute.
    3. Double-click the directory server attribute name to specify more settings for the attribute mapping.

      • Select Enabled to use this attribute mapping for write-back operations.
      • Click Simple Assignment or Scripted Assignment to specify the type of mapping. If you select Scripted Assignment, we can define the assignment by writing JavaScript code or by calling a function in the Solution Directory\LDAPSync\customScript.js file. See the Security Directory Integrator documentation and search for Scripting in SDI.

    4. To delete the mapping for a specific attribute, click the check box on that row. Then, click Remove Attribute and click OK when the confirmation message appears.


Results

When a write-back operation happens, a summary of what was written back to the endpoint is displayed. The summary includes details such as the name of the flow, modified attributes, and the DNs of the directory server and endpoint is displayed. We can use the Filter field for searching the write-back summary.


Parent topic:

Create a flow