8.2 Command Transformation - Publisher Delete to Disable

This rule transforms the Delete event for a user object into disabling the user object. Implement the rule on the Command Transformation policy in the driver. The rule needs to be implemented on the Publisher channel.

There are two steps involved in using the predefined rules: creating a policy in the Command Transformation policy set and importing the predefined rule. If you already have a Command Transformation policy that you want to add this rule to, skip to Importing the Predefined Rule.

8.2.1 Creating a Policy

  1. From the Outline view or the Policy Flow view, select the Publisher channel.

  2. Select the Command Transformation policy set in the Policy Set view, then click Create or add a new policy to the Policy Set icon Create or Add a New Policy icon to create a new policy.

  3. Click Create a new policy, then click Next.

  4. Name the policy.

  5. Use the default location or browse and select another location to place the policy in the driver.

    Create Policy Wizard
  6. Select Open Editor after creating policy, then click Next.

  7. Select DirXML Script for the type of policy, then click Finish.

  8. A file conflict window appears with the message “ Before editing this item you need to save. Do you wish to save the editor’s changes and continue?” Click Yes. The Policy Builder is launched and the new Command Transformation policy is saved.

  9. Continue with Section 8.2.2, Importing the Predefined Rule.

8.2.2 Importing the Predefined Rule

  1. Right-click in the Policy Builder, then click New > Predefined Rule > Insert Predefined Rule Before or Insert Predefined Rule After.

  2. Select Command Transformation - Publisher Delete to Disable, then click OK.

    Command Transformation - Publisher Delete to Disable
  3. Save the rule by clicking File > Save.

There is no information to change in the rule that is specific to your environment.

8.2.3 How the Rule Works

This rule is used when a Delete event occurs in the connected data store. Instead of the user object being deleted in the Identity Vault, the User object is disabled. Anytime a Delete event occurs for a User object, the destination attribute value of Login Disabled is set to True and the association is removed from the User object. The User object can no longer log in into the Novell® eDirectory™ tree, but the User object was not deleted.