Identity Manager 4.0.1 Driver for Scripting Implementation ... - NetIQ
Identity Manager 4.0.1 Driver for Scripting Implementation ... - NetIQ
Identity Manager 4.0.1 Driver for Scripting Implementation ... - NetIQ
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Association Matching Rules<br />
You can specify association matching rules in an include or exclude section. Association matching<br />
rule expressions can specify an exact association or a limited regular expression. For details about<br />
limited regular expressions, see “Limited Regular Expressions” on page 43.<br />
The way associations are <strong>for</strong>med can be customized <strong>for</strong> an implementation. (See Section 5.1,<br />
“<strong>Scripting</strong> <strong>Driver</strong> Data Definition,” on page 35 <strong>for</strong> more in<strong>for</strong>mation.)<br />
This example works <strong>for</strong> associations that are a concatenation of the object name and class name. To<br />
exclude the root user, specify the following:<br />
EXCLUDE<br />
rootUser<br />
ENDEXCLUDE<br />
Single-Line Rules<br />
[SUBSCRIBER|PUBLISHER] INCLUDE|EXCLUDE [className] objectSelection<br />
Where objectSelection can be<br />
{associationMatch | attributeName=expression}<br />
Single-line rules can specify the Subscriber or Publisher channel at the start of the rule. If a channel<br />
is specified, the rule applies only to that channel. Otherwise it applies to both channels.<br />
You must specify whether the rule is to include or exclude the objects it matches.<br />
You can specify a class name to limit matches to only objects of that class.<br />
You must specify either an association or an attribute matching expression. The syntax of the<br />
association and attribute matching expression is the same as that of association matching rules and<br />
attribute matching rules previously described. For details, see “Association Matching Rules” on<br />
page 43 and “Attribute Matching Rules” on page 42.<br />
For example, to ignore events from the ADMIN user in the <strong>Identity</strong> Vault, code:<br />
# Do not subscribe to events <strong>for</strong> the ADMIN user.<br />
SUBSCRIBER EXCLUDE adminUser<br />
Limited Regular Expressions<br />
A limited regular expression is a pattern used to match a string of characters.<br />
Character matching is case sensitive.<br />
Any literal character matches that character.<br />
A period (.) matches any single character.<br />
A bracket expression is a set of characters enclosed by left ([) and right (]) brackets that matches any<br />
listed character. Within a bracket expression, a range expression is a pair of characters separated by<br />
a hyphen, and is equivalent to listing all of the characters that sort between the given characters,<br />
inclusive. For example, [0-9] matches any single digit.<br />
An asterisk (*) indicates that the preceding item is matched zero or more times.<br />
Customizing the <strong>Scripting</strong> <strong>Driver</strong> 43