Authorization List

The IBM i connector reads the authorization list assigned to accounts and groups as an AUTL attribute during account and entitlement aggregation, respectively.

The IBM i connector supports:

Aggregating Authorization Lists associated with users.
Aggregating Authorization Lists associated with groups.
ADD/Remove Authorization Lists.

Note

USER DEFINED authority (authority other than ALL, CHANGE, or EXCLUDE) in the authorization list is not supported for provisioning operations. If a user tries to add or remove an authorization list having USER DEFINED authority, then the connector displays the following error:

AUT(USER DEFINED) USER DEFINED is not a valid parameter

For example, if a user tries to add an authorization list having user defined authority, the following error message is displayed:

Failed to execute Command: ADDAUTLE USER(<User Name>) AUTL(<AUTL Name>) AUT(USER DEFINED) USER DEFINED is not a valid parameter

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Authorization List

Documentation Feedback