Sun Identity Manager Deployment Reference

ProcedureTo Dynamically Test Multiple User Accounts per Resource

  1. Set up a resource with multiple account types.

    <?xml version=’1.0’ encoding=’UTF-8’?>
    <!DOCTYPE Waveset PUBLIC ’waveset.dtd’ ’waveset.dtd’>
    <Rule subtype=’IdentityRule’ name=’Administrator Identity’>
  2. Add a user with two accounts on the resource and set up a user form so that the new resource attributes are directly assigned separately:

    account[Simulated Resource].department
    account[Simulated Resource|admin].department
  3. Assign different values for each account and test the policy rule.