Account Group Aggregation

The dropdown list of all applications configured to work with IdentityIQ.

This option is only available for applications on which multiple application objects can exist.

This option is not available if you select to scan more than one application.

The list of all object types or account groups associated with the selected application. If nothing is selected, all object types and account groups are included.

It might become important to scan object types separately if they share attributes.

Enable the connector to aggregate only those account groups or application objects that have changed since the last aggregation. This requires support by the connector.

Detect and delete any account group or application object that was deleted on the native application since the last aggregation task was run.

The default locale for the description attribute of the account group or application object. This option is used if an existing description locale is not found.

The Description Attribute defined in the Application Group Schema overwrites any value set here.

The attribute that stores the description. This value defaults to the value description if this option is not set.

The rule used to set the owner or modify the account group when it is created or refreshed.

Click the [...] icon to launch the Rule Editor to modify the rule if needed.

Promote classification from the ResourceObject classification to the ManagedAttribute.

Enable partitioning of this task across multiple hosts.

Partitioning must be configured globally before this option can be used. See Partitioning.

Specify a number of partitions. If no number is specified, IdentityIQ calculates an optimal number based on available request servers.

The loss limit sets the maximum number of identities that will be reprocessed in case of a sudden termination of a partitioned refresh. This option is used only when partitioning is enabled. See Loss Limits.