Recently there has been a growth of users wanting more e-mail storage, more collaboration and greater client access capabilities. IT professional are stuck administrating a multitude of services and applications. Now with Google Apps, it is possible to have all these features and more, but having your email and collaboration system disconnected from your production environment isn’t the best solution.
With the Identity Manager driver for Google Apps, you can now keep your user accounts in Google Apps connected with the user accounts in your production environment. It will keep passwords and user account details in sync, without extra work required from the IT professional.
The driver only supports one-way synchronization, and thus no data can be retrieved from the Google Apps domain. The driver does not support reading attributes from the Google Apps domain so matching policies will not work.
The following features has been implemented:
- User creation, updates and deletion.
- Group creation, updates and deletion.
- Synchronize passwords to Google Apps Domain
Before you start make sure that you are running at least IDM 3.6 and that you have enabled the Provisioning API in your Google Apps domain.
Copy the googleDriver.jar file to the relevant location:
Restart the eDirectory
Goto your Identity Manager Driverset and Add a driver.
Import the configuration from the client and select the googleDriver.xml file.
In the driver configuration make sure that the Authentication ID is set to a valid Domain admin and that the Authentication context is set to the Google Apps Domain to be managed. The Application password should be set to the password of the relevant admin.
Eg: Authentication ID: email@example.com
Authentication context: test.domain.com
I urge anybody that used this driver or that wants to use this driver to please post if you require extra functionality. The driver was only created for the current set of features, but I am willing to expand it if necessary.