Deprovision View
Used to present and select a list of resources to be deprovisioned. Contains one single top-level attribute.
resourceAccounts
This attribute contain the following attributes.
Table 3–27 resourceAccounts Attributes (Deprovision View)|
Name |
Editable? |
Data Type |
Required? |
|---|---|---|---|
|
id |
Read/Write |
String | |
|
selectAll |
Read/Write |
Boolean | |
|
unassignAll |
Read/Write |
Boolean | |
|
unlinkAll |
Read/Write |
Boolean | |
|
currentResourceAccounts |
Read |
List (objects) | |
|
fetchAccounts |
Read/Write |
Boolean | |
|
fetchAccountResources |
Read/Write |
List |
id
Specifies the unique identifier for the account.
selectAll
Controls whether all resources are selected.
unassignAll
Specifies that all resources should be removed from the user’s list of private resources.
unlinkAll
Specifies that all resources should be unlinked from the Identity Manager user.
tobeCreatedResourceAccounts
Represents the accounts that are assigned to this Identity Manager user but which have not been created. Passwords cannot be unlocked on accounts that have not yet been created.
tobeDeletedResourceAccounts
Represents the accounts that have been created but are no longer assigned to this user. Passwords cannot be changed on accounts that are going to be deleted.
All three account lists contain objects that describe the state of the account on each resource and allow you to individually select accounts
currentResourceAccounts
Represents the set of accounts that are currently being managed by Identity Manager (including the Identity Manager account itself).
All account lists are indexed by resource name.
Table 3–28 currentResourceAccounts Attributes (Deprovision View)|
Name |
Editable? |
Data Type |
|---|---|---|
|
selected |
Read/Write |
Boolean |
|
unassign |
Read/Write |
Boolean |
|
unlink |
Read/Write |
Boolean |
|
name |
Read |
String |
|
type |
Read |
String |
|
accountId |
Read |
String |
|
exists |
Read |
Boolean |
|
disabled |
Read |
Boolean |
|
authenticator |
Read |
Boolean |
|
directlyAssigned |
Read |
Boolean |
selected
If set to true, indicates that for a given resource, the associated account should be deprovisioned. If the selected account is Lighthouse, the Identity Manager user and all associated resource assignments will be deleted unless they are also selected. However, the associated resource accounts will not be deleted.
unassign
If set to true, indicates that the specified resource should be removed from the user’s list of private resources (for example, waveset.resources).
unlink
If set to true, indicates that the specified resource should be unlinked from the Identity Manager user (for example, remove the associated ResourceInfo object).
Note –
If selected or unassign are set to true, this suggests that unlink will also be true. However, the converse is not true. unlink can be true and selected and unassign can be set to false.
name
Specifies the name of resource. This corresponds to the name of a resource object in the Identity Manager repository.
type
Identifies the type of resource, such as Solaris. You can determine the resource type names by bringing up the resource list from the Identity Manager Administrator interface. The Type column on this page contains the names of the type of currently defined resources. The options list next to New Resource also contains the names of the resource adapters that are currently installed.
accountId
Specifies the identity of the resource account.
exists
Indicates whether the account already exists on the resource or not (only in currentResourceAccounts).
disabled
Indicates whether the account is currently disabled or enabled (only in currentResourceAccount).
authenticator
Indicates whether the account is one that the user is configured to log in.
directlyAssigned
If true, indicates that the account is directly assigned to the user. A value of false indicates that the account is indirectly assigned by a role or application.
fetchAccounts
Causes the view to include account attributes for the resources assigned to the user.
See Setting View Options in Forms in this chapter for more information.
fetchAccountResources
Lists resource names from which to fetch. If unspecified, Identity Manager uses all assigned resources.
See Setting View Options in Forms in this chapter for more information.
- © 2010, Oracle Corporation and/or its affiliates