Role based user provisioning in sun idm 7 with AD
Hi friend
I am using a flat file as a authorative data source. Active directory my target resource.
In a flat file i am passing accountId, firstname,lastname,role, rolestatus, departmentnumber and department.
I have three group in AD sales,IT,HR.
I have three role sales,IT,HR
my role mapping with AD group is one-to-one.
sales->sales
etc
My requirement scanario is
When the user will get a account in idm then it should be get an account in AD group based on role.
And user container in AD will be based on department number.
I am able to create user in idm from flat file using ActiveSyn adapter.
But i m not able to see any role in idm.
I have no idea how its work in sun idm.
If anybody has done then please let me know.
Thanks in Advance.
Thanks.
# 1
hi friends,
i am too facing a bit similar problem.
i want to assign the resources on role based.
i am creating the user and assigning the role in the workflow but when i ran the workflow in the idm the user is successfully creating in the idm as well as in resource but in assignments tab it is showing it as individual resource assignment .
how can make it to show that the resource is assigned by the role not individually.
my code snippet is
<set name='user.waveset.roles'>
<ref>usertype</ref>
</set>
<dolist name='aRef'>
<invoke name='getResourceRefs'>
<invoke name='getObjectIfExists'>
<invoke name='getLighthouseContext'>
<ref>WF_CONTEXT</ref>
</invoke>
<invoke name='findType' class='com.waveset.object.Type'>
<s>Role</s>
</invoke>
<ref>user.waveset.roles</ref>
<null/>
</invoke>
</invoke>
<appendAll name='user.waveset.resources'>
<list>
<invoke name='getName'>
<ref>aRef</ref>
</invoke>
</list>
</appendAll>
</dolist>
if anybody have any idea about role based resource assignment please help me out
thanks
