[midPoint] Role template "role-sailor"

Salim Boulkour salim.boulkour at arismore.fr
Thu Jul 18 13:38:46 CEST 2013


Hey everyone,

 

I began playing with roles in midpoint and am trying to understand the
contents of 
https://svn.evolveum.com/midpoint/tags/midpoint-2.1.2/samples/roles/role
-sailor.xml.

 

Role description says :

A basic role, that specifies account on OpenDJ resource

and also sets "employeeType" attribute to a fixed value and it sets
"destinationIndicator"

as a copy of a user property.

 

 

What interests me here, is the ability to do modifications to the
account. So my questions are :

 

-       Does the account has to be created before assigning that role to
a user ? Or account would be created as soon as role is given to the
user ?

 

-       I understand the OID in 'resourceRef' being the way to specify
the targeted resource. Is this the only way to specify it ? (As the doc
on the data model stated I wouldn't have to play with OIDs much ;) )

 

-       If I specify in the role a resource attribute that is already
handled by the resource/connector conf', what would happen ? Has the
value given by the role assignment a higher priority than the default
one ?

 

 

 

 

 

Regards,

Salim BOULKOUR 
Consultant IAM 

  <http://www.arismore.fr/> 

________________________________

ARISMORE
137 Bureaux de la Colline - 92213 Saint-Cloud Cedex - France
Ligne directe : +33 (0)1 78 16 48 26 - Portable : +33 (0)6 01 34 41 71 

Standard : 01 55 57 21 60 - Fax : 01 55 57 04 45

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20130718/840607e1/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 8461 bytes
Desc: image001.jpg
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20130718/840607e1/attachment.jpg>


More information about the midPoint mailing list