About Applications and Connectors

IdentityIQ uses configured applications to connect to your enterprise’s target systems and read data from those applications into IdentityIQ. This data is used for creating/updating Identity Cubes, building IdentityIQ’s entitlement catalog, and bringing information about users' accounts and group membership into IdentityIQ. Many, but not all, applications can also write information back to target systems, to reflect changes made within IdentityIQ.

Although the terms "application" and "connector" sometimes seem to be used interchangeably, it's important to understand the differences:

Connectors are how IdentityIQ provides the base functionality for communication with the target system. Connectors are in essence templates for connecting to target systems. They define how connectivity to the target system is accomplished, provide the ability to connect to a source, to read from and (in some cases) write to the source, and to create a normalized resource object representing the data read from the source.

Applications are configured instances of connectors. They contain specific information for connecting to specific target systems, such as a unique name, connection parameters for connecting to a particular system, and a specific account schema. For example, you may need to aggregate data from several different delimited files. Using the delimited file connector, you can create many unique delimited file applications, each pointing to a particular file, and using a specific schema that defines the data to be aggregated from the file.