Use OIG as a primary source for managing Users and Roles.

Perform deletion of users, or role related changes such as memberships and hierarchy in OIG and not directly against the directory.

The following are the known limitations for the OIG-OAM integration:

• Group names must be unique in target LDAP for SSO-integrated setup.

• Orchestration-Provisioning Compensation will not be performed by any of the LDAP account, role, user membership, and role hierarchy post process handlers.