question

AlbertoBoccato-6712 avatar image
0 Votes"
AlbertoBoccato-6712 asked ·

How to integrate Oracle HCM Cloud with Active Directory

Hi,
we have implemented Oracle HCM Cloud which is a SaaS solution like Workday.
Oracle HCM cloud is the master for the employment info, such as address, department, bu, company and so on.
Active directory is the identity provider so we enabled SSO between active directory and Oracle HCM Cloud.
What we are now trying to do is to integrate Oracle HCM cloud with Active Directory in order to update the employment info on Active directory as soon as those information change in Oracle HCM Cloud.
So, we are basically looking for an API to update address, department, bu, company, etc on active directory.
Is there any REST or SOAP web service that we can call from our application to update the data in Active directory?
We have read something about graph api but as far as I've understood we need to perform an update on the windows active directory and not on the cloud version.
Could anyone give us a clear picture on how this kind of integrations is usually done?

Regards,
Alberto

azure-active-directorywindows-active-directory
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@AlbertoBoccato-6712
Just checking in to see if the below answers helped. If this answers your query, do click “Accept Answer” and Up-Vote for the same. And, if you have any further query do let us know.


Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.

Want a reminder to come back and check responses? Here is how to subscribe to a notification.


0 Votes 0 ·
learn2skills avatar image
0 Votes"
learn2skills answered ·

@AlbertoBoccato-6712

Hi,

Please refer below azure document for integrating with azure active directory SSO.

you can Integrate Oracle Cloud Infrastructure Console with Azure Active Directory

Integrating with Microsoft Active Directory


Please don’t forget to "Accept the answer" and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.




·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlbertoBoccato-6712 avatar image
0 Votes"
AlbertoBoccato-6712 answered ·

hi,
thanks for your prompt reply. It's clear how to implement SSO. The point is that we would need to propagate the changes done in Oracle HCM Cloud (for example address changes, department changes and so on) to Active Directory. So could you please provide an example of how to update the address of a user via a web service call on active directory?

Regards,
Alberto

· 1 ·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@AlbertoBoccato-6712

Yes it will get update user details changes.

Configure automatic user provisioning to Oracle Fusion ERP

https://docs.oracle.com/en-us/iaas/Content/Identity/Tasks/federatingADFSazure.htm



Please don’t forget to "Accept the answer" and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.




0 Votes 0 ·
ZollnerD avatar image
0 Votes"
ZollnerD answered ·

MS Graph API would allow you to edit some attributes on objects in Azure AD based on data read from Oracle HCM, but that would require a lot of custom work on your end. Azure AD also has automated HR-driven provisioning, but as of today Oracle HCM is not an available HCM provider. We are planning to add Oracle HCM in the future, but I don't believe there is a shareable ETA on this.

Link to the HR-driven provisioning docs for reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/what-is-hr-driven-provisioning

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

EricKoch-6304 avatar image
0 Votes"
EricKoch-6304 answered ·

@AlbertoBoccato-6712

RoboMQ provides this solution for customers and it works well. You can have this setup to make API calls or do file-based extraction to fully automate the creation and updates of user identities in on-prem AD, which can then be synced to Azure AD using the AD Connect. It can also assign users to the right OU's, security groups, distribution lists, enable SSO, open tickets in an ITSM and more - https://www.robomq.io/oracle-hcm-ad-integration/

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.