"Reconciliation" concept in SAP NW IdM 7.2
Can anyone suggest a best-practice for doing reconciliation with SAP NW IdM 7.2?
When reading the Release Notes from SAP NW IdM 7.2 SP07 / SP08, I saw that the reconciliation job-templates are now obsolete. This leads me to the question how should I do it then? Reconciliation, as SAP defines it now is just setting a "dirty" flag when a privileg or a role was not provisioned correctly, for whatever reasons.
But what about reconciling attributes?
I have a MS AD repository. If someone changes a attribute on a AD-User, for which the AD repository is a leading system (master), for example the email-address, what would you do to reconcile this change?
So, what is the basic concept to detect and update changed "master"-attributes from a repository?