Creating a Rule

IdentityIQ (6.0) user interface does not have facility to create Native Rule applicable for IQService. Create a rule with any supported type from the user interface. Add the script to the Rule source and save the Rule. Navigate to the debug page, open the newly created Rule and perform the following steps:

Change the rule type to one of the following types as appropriate:

Type Name	Description
ConnectorBeforeCreate	Before script for creation operation.
ConnectorAfterCreate	After script for create operation.
ConnectorBeforeModify	Before script for modify operation that includes enable, disable, and unlock.
ConnectorAfterModify	After script for modify operation that includes enable, disable, and unlock.
ConnectorBeforeDelete	Before script for deletion operation.
ConnectorAfterDelete	After script for delete operation.

Use the following format to add attributes to the Rule in the form:

Copy

<Attributes>
    <Map>
        <entry key=<Name> value=<Value>/>
    </Map>
</Attributes>

Add the following attributes to the Rule in the form:

Name	Description	Default Value
objectOrientedScript	Whether the rule source uses object oriented scripting.	False
disabled	Set to true if the rule should not be executed on the IQService side.	False
extension	Extension of the script.	.bat
program	Program/application that can execute this type of script. Ensure that this program is installed on the system where IQService is running and i properly configured to execute the scripts.	cmd.exe or cmd
timeout	Time interval (in seconds) that IQService should wait for script to return. After this interval, IQService aborts the script.	10

Configuring the Rules in Application

With this releases, IdentityIQ user interface does not have facility to configure Native Rule applicable for IQService in Application. Navigate to the debug page, open the application and add <nativeRules> under Attributes map with list of names of the Rules that must be configured for this application.

For example:

Copy

<entry key="nativeRules">
  <value>
    <List>
      <String>AfterCreate-Powershell</String>
      <String>BeforeCreate-Powershell</String>
      <String>BeforeModify-Batch</String>
    </List>
  </value>
</entry>

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Creating a Rule

Configuring the Rules in Application

Documentation Feedback