Setting up Advanced Identiy Management
See how to download example files from the helm chart here.
Configuration
For a quick setup using the default settings, see the minimal fragment from charts/matrix-stack/ci/fragments/.groupsync-advanced-identity-management-minimal.yaml
Configuring a postgresql database
If you want to configure groupsync.advancedIdentityManagement.postgres database manually, see the following fragments :
-
charts/matrix-stack/ci/fragments/group-sync-advanced-identity-management-test-postgres.yaml -
charts/matrix-stack/ci/fragments/orgroup-sync-advanced-identity-management-test-postgres-secrets-in-helm.yamlcharts/matrix-stack/ci/fragments/group-sync-advanced-identity-management-test-postgres-secrets-externally.yaml
Edit the values accordingly.
Configuring with SCIM bridging
To use GroupSyncAdvanced Identity Management SCIM bridging, it is required either :
- To configure
aanGroupSyncAdvanced Identity Management Ingress. You can use the example fromcharts/matrix-stack/ci/fragments/. The SCIM endpoint will be available at the root ofgroup-sync-advanced-identity-management-ingress.yamlGroupSyncAdvanced Identity Management hostname. - To use existing Synapse ingress. If Synapse and
GroupSyncAdvanced Identity Management are deployed in the same chart release, a path/scim/v2will be available at the root of Synapse Ingress.
Configuring GroupSyncAdvanced Identity Management synchronization
If LDAP is configured under authentication.ldap, GroupSyncAdvanced Identity Management will use the 1st provider of the list as its own LDAP source provider.
If you want to configure the LDAP provider manually, you can configure it using groupSync.advancedIdentityManagement.additionalGroupAdvanced SyncIdenttiy Management Overview to see how you can configure it.