Data Sync
The Data Sync tab allows administrators to synchronize identity data from your connected Hydden platform and manage the data stored in your Hydden.Control tenant.
Overview
Data synchronization pulls identity information from your Hydden Discovery or Observability instance into Hydden.Control. This data forms the foundation for access review campaigns, including:
- Accounts - User and service accounts from connected systems
- Owners - Business owners responsible for account access
- Groups - Group memberships and hierarchies
- Roles - Generated roles based on owner attributes
- Applications - Connected applications and data sources
Prerequisites
Before synchronizing data:
- Configure the Integration Settings with valid credentials
- Verify the integration connection is successful
Integration Required
The Data Sync tab displays a message if integration is not configured. Complete the Integration Settings first.
Synced Data Summary
The Data Sync tab displays statistics about synchronized data:
| Statistic | Description |
|---|---|
| Accounts | Total number of synchronized accounts |
| Owners | Total number of business owners |
| Groups | Total number of groups |
| Applications | Total number of applications |
| Last Sync | Date and time of the most recent synchronization |
Synchronizing Data
Manual Sync
To manually synchronize all data:
- Navigate to Settings and select the Data Sync tab.
- Click Sync All Data.
- The synchronization begins and progress is displayed.
- When complete, the statistics update to reflect the new data.
The sync operation:
- Retrieves all identity data from the connected Hydden platform
- Creates new records for new entities
- Updates existing records that have changed
- Marks removed entities appropriately
Sync Progress
During synchronization:
- A progress indicator shows the sync is in progress
- The button is disabled to prevent duplicate sync requests
- You can navigate away; the sync continues in the background
To monitor sync progress in detail, see Job History.
Automatic Sync
Data synchronization also runs automatically on a scheduled basis. The schedule is configured at the platform level. Check with your Hydden administrator for the synchronization schedule.
Managing Tenant Data
Danger Zone
The Data Sync tab includes a Danger Zone section for destructive operations.
Data Deletion
Deleting tenant data permanently removes all synchronized identity data. This action cannot be undone.
Delete All Data
To delete all synchronized data from your tenant:
- Scroll to the Danger Zone section.
- Click Delete All Data.
- A confirmation dialog appears warning about the permanent nature of this action.
- Confirm the deletion.
What gets deleted:
- All synchronized accounts
- All synchronized owners
- All synchronized groups
- All synchronized applications
- All generated roles
What is preserved:
- Platform users (Hydden.Control users)
- Campaign configurations
- Campaign rules and policies
- Integration settings
- Audit log entries
Re-synchronization
After deleting data, run a new synchronization to repopulate your tenant. Data will be re-synced on the next scheduled or manual sync if integrations remain configured.
Sync Job Types
When you trigger a sync, multiple job types may run:
| Job Type | Description |
|---|---|
| Full Sync | Complete synchronization of all entity types |
| Account Sync | Synchronize accounts only |
| Owner Sync | Synchronize owners only |
| Group Sync | Synchronize groups only |
| Application Sync | Synchronize applications only |
| Incremental Sync | Sync only changes since last sync |
View detailed job information in Job History.
Troubleshooting
Sync Fails Immediately
Cause: Integration not configured or credentials invalid.
Solution: Verify Integration Settings are complete and valid.
Sync Completes with Errors
Cause: Partial data issues in source system.
Solution: Check Job History for error details. Review the source Hydden platform for data quality issues.
No Data After Sync
Cause: Source system has no data, or permissions issue.
Solution: Verify the OAuth client has permissions to read identity data from the Hydden platform.
Best Practices
- Initial Sync - Run a full sync after first configuring integration
- Monitor Jobs - Check Job History after syncs to verify success
- Before Campaigns - Ensure data is current before launching access review campaigns
- After Source Changes - Sync after significant changes in your identity sources
Related Topics
- Integration Settings - Configure platform connection
- Job History - Monitor sync job progress
- Settings Overview - All Settings options