Manualshelf

System information

ManualsBrandsRed Hat ManualsComputer equipmentDIRECTORY SERVER 7.1 - GATEWAY CUSTOMIZATION
21222324252627282930
What’s New in This Release
Page 26 Identity Manager 7.1 Update 1 Release Notes
Resource Adapter Updates
MySQL resource adapter now supports account iteration. The adapter discards duplicate
usernames and skips null usernames. (ID-6204)
The RACF adapter now allows you to control dataset rules directly, rather than have
Identity Manager administer them. This feature enables you to create dataset rules different
from the rules that are native to Identity Manager. (ID-10446)
The following example after create rule creates a dataset rule of
user id
.test1.**
, rather
than the Identity Manager default of
user id
.**
.
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE ResourceAction PUBLIC 'waveset.dtd' 'waveset.dtd'>
<ResourceAction name='create after action'>
<ResTypeAction restype='RACF'>
<act>
var TSO_PROMPT = " READY";
var TSO_MORE = " ***";
var cmd1 = "addsd '"+identity+".test1.**' owner('"+identity+"')[enter]";
var result1 = hostAccess.doCmd(cmd1, TSO_PROMPT, TSO_MORE);
</act>
</ResTypeAction>
</ResourceAction>
The new “
use Datasets”
flag controls whether Identity Manager administers dataset rules
itself (
"use Datasets" = true
) or defers control strictly to
before
and
after
actions.
The resource used for the Service Provider master repository can now have multiple
variables in the identity template. (ID-14290)
You can now configure the Database Table adapter to skip past rows that failed during
Active Sync processing so that the next poll will not repeatedly process failed rows.
(ID-15147)
The RACF LDAP resource adapter now supports pass-through authentication. (ID-15251)
The Access Enforcer Resource adapter now supports the change password feature.
(ID-15403)
A new Resource Attribute (
Use IDM Password on Create
) has been added to configure the
behavior for a
create
operation. Access Enforcer generates a password for the create
operation and sends an email containing the generated password to the newly created user.
You cannot prevent this email from being sent, but if you want Identity Manager to set the
password to the one sent to the adapter, set this attribute to
true
and Identity Manager will
set the password to the desired value.