Add Resource

Initiates a request to Roles Based Provisioning Module (RBPM) for assigning the resource to the identity specified in the Resource DN field. The target identity is specified in the Object field. This action is available only with the Identity Manager server version 4.0.2 and later. If a policy containing this action encounters an error, Identity Manager generates an error in the error.do-add-resource local variable. For more information about local error variables, see Local Variable Selector.

Fields

Resource DN

Specify the name of the resource to assign, in LDAP format. Supports variable expansion. For more information, see Variable Selector.

User Application URL

Specify the URL of the User Application server hosting the Roles Based Provisioning module. Supports variable expansion. For more information, see Variable Selector.

Authorized User DN

Specify the name of the user authorized to request the resource assignment, in LDAP format. Supports variable expansion. For more information, see Variable Selector.

Timeout Value

Specify the number of milliseconds you want Identity Manager to try to establish a connection to the User Application server before timing out. The default value is 0.

Password

Specify the authorized user password. You can enter a clear text password (not recommended) or use the Argument Builder to specify a Named Password.

Object

Select the target object type. This object can be the current object, or can be specified by a DN or an association.

Strings

(Optional) Specify additional argument strings for the Resource assignment request. You can enter the strings manually, or select the Edit the Strings icon. to open the Named String Builder and specify the strings. For more information about the Named String Builder, see Named String Builder.

The Add Resource action supports the following string arguments:

String Name	Description
description	A description of the reason for the request used for auditing and (if necessary) approval purposes. Default: Request generated by the policy.
CorrelationID	An identifier to correlate the role assignment process. Default: Operation event Correlation ID If no value is specified for the argument, it uses the default value. NOTE:This string argument is not available in the Policy Builder user interface of this version.

String Name

Description

description

A description of the reason for the request used for auditing and (if necessary) approval purposes.

Default: Request generated by the policy.

CorrelationID

An identifier to correlate the role assignment process.

Default: Operation event Correlation ID

If no value is specified for the argument, it uses the default value.

NOTE:This string argument is not available in the Policy Builder user interface of this version.

NOTE:You can specify parameter values for the added resources. You can use the plus sign (+) to insert a new string, or select the Edit the Strings icon to open the String Builder and specify the strings.

You must specify the parameter names as param1, param2, and so on.

If you add a dynamic resource, you must specify the parameter name as EntitlementParamKey and provide the value of the parameter in JSON format (for Identity Manager 4.0 and later) or the legacy entitlement format (for earlier versions of Identity Manager).

For more information about the Named String Builder, see String Builder.

Add Resource

Fields

Example