Sun Identity Manager 8.1 Business Administrator's Guide

Before You Begin

Plan carefully before creating an audit policy! Before you begin, verify that you have completed these tasks:

ProcedureTo Identify the Rules You Need

The constraints you specify in the policy are implemented in a set of rules that you create or import. When using the Audit Policy Wizard to create a rule, perform the following steps:

  1. Identify the specific resource you are working with.

  2. Select an account attribute from the list of attributes that are valid for the resource.

  3. Select a condition to impose on the attribute.

  4. Enter a value for comparison.

    For information on creating audit policy rules outside of the Audit Policy Wizard, see Chapter 5, Working with Rules, in Sun Identity Manager Deployment Reference.

(Optional) Import Separation of Duty Rules into Identity Manager

The Audit Policy Wizard cannot create Separation of Duty rules. You must construct these rules outside of Identity Manager and import the rules by using the Import Exchange File option on the Configure tab.

(Optional) Import a Workflow into Identity Manager

ProcedureTo Import an External Workflow

To use a remediation workflow that is not currently available from Identity Manager, import the external workflow. You can create custom workflows using an XML editor or the Identity Manager IDE.

  1. Set authType=’AuditorAdminTask’ and add subtype=’SUBTYPE_REMEDIATION_WORKFLOW’. You can use the Identity Manager IDE or your XML editor of choice to set these configuration objects.

  2. Import the workflow by using the Import Exchange File option.

    1. Log in to the Administrator interface ( Logging in to the Identity Manager End-User Interface ).

    2. Click the Configure tab, then click the Import Exchange File subtab or menu.

      The Import Exchange File page opens.

    3. Browse to the workflow file to upload, then click Import.

      After you have successfully imported the workflow, it appears in the Audit Policy Wizard (Creating an Audit Policy) Remediation Workflow list of options.