Application Delivery Management
Application Modernization & Connectivity
CyberRes
IT Operations Management
In part one of this series I walked through some of the configuration, Packages, and GCVs used in the Office 365 IDM driver.
In part two of this series I walked through more of the GCVs and looked at some possible values for the License entitlements.
In part three of this series I looked at the Filter and Schema Map and some more entitlement issues.
In part four of this series I looked at the configuration settings and then on to actual policies, getting through the Subscriber Event Transform policy set.
In part five of this series I worked through the Subscriber Match and Create policy sets.
In part six of this series I started in on the Subscriber Command Transform policy set.
In part seven of this series I continued through the EntitlementsImpl policy in the Command Transform.
In part eight of this series I finished up the Command Transform and started into the Output Transform.
In part nine of this series ( ) I finished walking through the Output Transform.
In part ten of this series I intend to start down the Input Transform policy set.
There are ten policies in the Input Transform, some are common ones (Account Tracking, Entitlement Configuration Resource, Init managed System Info) and some are unique to this driver configurations packages.
<entitlement-configuration modified="20140303033113">
<entitlements>
<entitlement data-collection="true" dn="CN=Group,CN=AD,CN=dset,O=idm" parameter-format="idm4" resource-mapping="true" role-mapping="true">
<type category="security grouping" id="group" name="group">
<display-name>
<value langCode="en">Group</value>
</display-name>
<sub-type source="read-attr" source-name="Type">
<display-name source-value="Regular">
<value langCode="en"/>
</display-name>
<display-name source-value="Queue">
<value langCode="en"/>
</display-name>
</sub-type>
</type>
<parameters>
<parameter mandatory="true" name="ID" source="association"/>
<parameter mandatory="true" name="ID2" source="src-dn"/>
</parameters>
<member-assignment-extensions>
<query-xml>
<read-attr attr-name="Members"/>
</query-xml>
</member-assignment-extensions>
<query-extensions>
<query-xml>
<operation-data data-collection-query="true"/>
</query-xml>
</query-extensions>
<query-xml>
<read-attr attr-name="Type"/>
</query-xml>
</entitlement>
</entitlement-configuration>
<entitlement data-collection="true" dn="CN=Group,CN=AD,CN=dset,O=idm" parameter-format="idm4" resource-mapping="true" role-mapping="true">
//status[@event-id='query-driver-ident']/operation-data/@UserAccountEntitlementQuery
<instance class-name="MSolDomain" src-dn="domain.com">
<attr attr-name="DomainName">
<value>Account for domain: domain.com</value>
</attr>
<attr attr-name="DomainDescription">
<value>User account in Office365domain.com</value>
</attr>
<attr attr-name="DomainValue">
<value>domain.com</value>
</attr>
</instance>
<do-strip-xpath expression=".[count(attr)=0]"/>
../modify[last()]/modify-attr[last()]/add-value[last()]/value[last()]