1.3 Data Transfers Between Systems

This sections explains how the data flows between Active Directory and the Identity Vault.

1.3.1 Publisher and Subscriber Channels

The Active Directory driver supports Publisher and Subscriber channels.

The Publisher channel does the following:

  • Reads events from Active Directory for the domain hosted on the server that the driver shim is connecting to.
  • Submits that information to the Identity Vault.

The Subscriber channel does the following:

  • Watches for additions and modifications to the Identity Vault objects.
  • Makes changes to Active Directory that reflect those changes.

You can configure the driver so that both Active Directory and the Identity Vault are allowed to update a specific attribute. In this configuration, the most recent change determines the attribute value, except in the case of merge operations that are controlled by the filters and merge authority.