Technical Note: Sun Java System Access Manager ACI Guide

Organizational Unit or Containers

When a Container is created, the following roles are created by default:

The creation of the following roles and the related ACIs, every time an organization is created, can be eliminated:

Eliminate the roles and the related ACIs by making the following changes to the DAI service in the /etc/opt/SUNWam/config/ums/ums.xml file.

You can selectively remove only one of these roles, instead of all of them:

       <Attribute name="childNode" />

The above are lines 170-175 in the /etc/opt/SUNWam/config/ums/ums.xml file.

It is not possible to eliminate the creation of this role: People Admin Role.

Every time an organization is created, a default People container is created and along with the People container, this role is also created. If you do not need this role, you may delete this role from the Access Manager Console. That will clean up all the ACIs related to this role as well.