6.8 Event Transformation - Scope Filtering - Exclude Subtrees

This rule excludes all events that occur in a specific subtree. Implement the rule on the Subscriber Event Transformation or the Publisher Event Transformation policy in the driver.

There are two steps involved in using the predefined rules: creating a policy in the Event Transformation policy set, and importing the predefined rule. If you already have an Event Transformation policy that you want to add this rule to, skip to Importing the Predefined Rule.

6.8.1 Creating a Policy

  1. Open the Identity Manager Driver Overview for the driver you want to manage.

    For instructions on how to access the Identity Manager Driver Overview page, see Accessing the Identity Manager Driver Overview Page.

  2. Click the Event Transformation Policies set object on the Publisher or Subscriber channel.

  3. Click Insert.

  4. Name the policy, make sure to implement the policy with the Policy Builder, then click OK.

    The Policy Builder is launched.

  5. Continue with Section 6.8.2, Importing the Predefined Rule.

6.8.2 Importing the Predefined Rule

  1. In the Policy Builder, click Insert.

  2. Select Event Transformation - Scope Filtering - Exclude subtrees.

  3. Expand the predefined rule.

    Event Transformation - scope filtering - exclude subtrees

  4. To edit the rule, click Event Transformation - Scope Filtering - Exclude subtrees in the Policy Builder.

    The Rule Builder is launched.

  5. Click the browse button next to the Value field to browse the Identity Vault for the part of the tree you want to exclude events from synchronizing, select it, then click OK.

  6. Click OK.

6.8.3 How the Rule Works

This rule is used when you want to exclude part of the Identity Vault or connected system from synchronizing. When an event occurs in that specific part of the Identity Vault, it is vetoed. You can add additional subtrees to be excluded by copying and pasting the If Source DN condition.