6.2 Command Transformation - Publisher Delete to Disable

This rule transforms a Delete operation for a User object into a Modify operation that disables the target User object in eDirectory. Implement the rule on the Publisher Command Transformation policy in the driver.

There are two steps involved in using the predefined rules: creating a policy in the Command Transformation policy set, and importing the predefined rule. If you already have a Command Transformation policy that you want to add this rule to, skip to Importing the Predefined Rule.

6.2.1 Creating a Policy

  1. Open the Identity Manager Driver Overview for the driver you want to manage.

    For instructions on how to access the Identity Manager Driver Overview page, see Accessing the Identity Manager Driver Overview Page.

  2. Click the Command Transformation Policy set object on the Publisher channel.

  3. Click Insert.

  4. Name the policy, make sure to implement the policy with the Policy Builder, then click OK.

    The Policy Builder is launched.

  5. Continue with Section 6.2.2, Importing the Predefined Rule.

6.2.2 Importing the Predefined Rule

  1. In the Policy Builder, click Insert.

  2. Select Command Transformation - Publisher Delete to Disable.

  3. Expand the predefined rule.

    Command Transformation - publisher delete to disable
  4. Click OK.

    There is no information to change in the rule that is specific to your environment.

6.2.3 How the Rule Works

This rule is used when a Delete command is going to be sent to the Identity Vault, usually in response to a Delete event that occurred in the connected system. Instead of the User object being deleted in the Identity Vault, the User object is disabled. When a Delete command is processed for a User object, the destination attribute value of Login Disabled is set to true, the association is removed from the User object. The User object can no longer log in into the eDirectory tree, but the User object was not deleted.