Raja_KT
Architect
Architect
  • UID6384
  • Fans4
  • Follows3
  • Posts555
Reads:67215Replies:5

RAM -Supports Synchronization with Enterprise Local Accounts and SSO

Created#
More Posted time:Jan 25, 2019 12:12 PM

If your enterprise has its own local domain account identity management system, configure SSO to log on to Alibaba Cloud from the enterprise local account identity management system. This facilitates centralized employee identity management both in the cloud and locally. Alibaba Cloud uses SAML 2.0-based identity federation standards to realize interoperability between identity systems.



[Raja_KT edited the post at Jan 25, 2019 13:17 PM]
Street children suffer not because of their fault. We can help them if we want.Contact me.

alexeqx
Intern
Intern
  • UID6956
  • Fans0
  • Follows0
  • Posts2
1st Reply#
Posted time:Feb 5, 2019 23:54 PM
Hi,

The official documentation talks about a "RAM user synchronization tool" for provisioning users from an AD into the Alibaba Cloud account.

Do you know where the download link is?

Regards

Raja_KT
Architect
Architect
  • UID6384
  • Fans4
  • Follows3
  • Posts555
2nd Reply#
Posted time:Feb 6, 2019 0:35 AM
Couldn't you get the details from here? Hope the links below help

https://www.alibabacloud.com/help/doc-detail/93684.html?spm=a2c5t.10695662.1996646101.searchclickresult.10af4e04Ixobtg

Document Center ->Resource Access Management-> User Guide-> Identity management->Identity federation management >Federated SSO overview

I remember this blog too:
https://www.alibabacloud.com/blog/594416?spm=a2c5t.10695662.1996646101.searchclickresult.7fb54dfeDkeD0M

Configure the SAML of an external IdP:

Note says:

Note If your IdP does not support URL configuration, click the URL next to SAML Service Provider Metadata URL to download an XML file. Then, when you create an SAML SP, you can upload the XML file.

https://www.alibabacloud.com/help/doc-detail/96239.htm?spm=a2c63.p38356.a3.4.6c6866620MKp6Q#concept-gsy-gw3-sfb
Street children suffer not because of their fault. We can help them if we want.Contact me.

alexeqx
Intern
Intern
  • UID6956
  • Fans0
  • Follows0
  • Posts2
3rd Reply#
Posted time:Feb 6, 2019 4:25 AM
I was talking about a software used to sync users. I already did that integration with our identity provider. What I want now is to replicate every user in our AD into the Alibaba Cloud account using this tool:

https://www.alibabacloud.com/help/doc-detail/93687.htm?spm=a2c63.p38356.b99.32.729c6662iaBs0C

"Use the Alibaba Cloud RAM user synchronization tool to synchronize users from the enterprise IdP to Alibaba Cloud RAM.

Note To use the RAM user synchronization tool for a trial, contact your account manager."


But I am the account manager and have no idea where I can download the tool.

Raja_KT
Architect
Architect
  • UID6384
  • Fans4
  • Follows3
  • Posts555
4Floor#
Posted time:Feb 6, 2019 11:19 AM
Can you open a ticket?  Open a ticket and get quick help from our technical team corresponding to the synchronization of users. I remember when we used ldap it was a bit easier and later the client shifted to PUM :) .
Street children suffer not because of their fault. We can help them if we want.Contact me.

Raja_KT
Architect
Architect
  • UID6384
  • Fans4
  • Follows3
  • Posts555
5Floor#
Posted time:Feb 6, 2019 20:08 PM
Any response you get  from the Technical support team on RAM?
Street children suffer not because of their fault. We can help them if we want.Contact me.
Guest