Defines an <entitlement>. It contains the dn of the actual <entitlement> definition that is stored in the XMLData attribute in the Identity Vault. This element contains additional information about the <entitlement> type, filters, and additional extensions that can be used by clients for data collection.
See <entitlement-configuration>.
Element |
Description |
---|---|
Entitlement type. |
|
Parameter list. |
|
Filters to include or exclude query results. |
|
Modifications for queries. |
|
Member assignment information for accounts |
|
Member assignment information for groups. |
|
Optional query extensions. |
|
Get account information. |
Attribute |
Value(s) |
Default Value |
---|---|---|
dn |
CDATA The LDAP DN of the entitlement object in the Identity Vault. |
#REQUIRED |
name |
CDATA The Identity Vault name of the entitlement. |
#IMPLIED |
parameter-format |
legacy | idm4 Indicates the format for the parameters. The parameter formats before Identity Manager 4.0 are referred as legacy formats. |
idm4 |
resource-mapping |
true | false Indicates whether this entitlement should be included in the resource mapping. |
true |
resource-mapping-state |
add | pending Whether resource associations should be added with immediate effect or wait for approval. |
add |
role-mapping |
true | false Indicates whether this entitlement should be included in the role mapping. |
true |
(account, type, parameters, filters, query-extensions, query-xml, member-assignment-extensions, member-assignment-query)
Element |
Description |
---|---|
Interpretation of the query results. |