Turn off identity management

You can turn off identity management any time and revert to managing all users, groups, and email addresses in the portal. To do so:

Steps

  1. (Directory Synchronization only) Cancel any scheduled synchronizations on the client machine. For more information, see the section “Removing the synchronization schedule” in the Directory Synchronization Client Administrator’s Guide.
    (SCIM) Disable the cloud service integration in your identity provider to avoid seeing errors when a synchronization is attempted by the IdP.
  2. Log on to the portal.
  3. Navigate to the Account > Identity Management page and click Edit.
  4. Clear the Enable identity management check box.
  5. Click Save.

Next steps

Important: Ensure that a synchronization is not under way when you disable the feature. If a synchronization is running, you may end up with an incomplete set of data: for example, your groups might have synchronized successfully, but your users might not.

When you turn off directory synchronization, Group and user IDs on previously synchronized items are retained, so you can easily re-enable synchronization at a later date. SCIM users will, however, need to generate a new authentication token and set it in the identity provider configuration details.

Please note that changes made manually in the cloud to data items that were previously synchronized are lost if you later re-synchronize. When you re-enable synchronization, you are indicating that it is now the identity provider or LDAP directory that holds the master data, and a full re-synchronization is performed.