Deprecated as of Identity Manager 2.0. Use DirXMLScript <rule> instead.
<create-rule> is used to specify the criteria for creating a new object as a result of an <add> event.
When a <create-rule> is evaluated, it first checks whether or not this is a suitable rule for the <add> event in question. It does this by checking if a class name is specified by the rule. If so, the rule is only suitable if the class name matches the class name on the event. It then checks if any <match-attr> criteria are specified by the rule. If so, the rule is only suitable if the <add> contains all the attribute values required by the <match-attr>. If a rule is determined to not be suitable, it is skipped.
When a suitable rule is found, the <add> is evaluated to see if it has a value for all of the <required-attr> that do not contain a default value. If not, the <add> is vetoed; otherwise, it is allowed. Then any required attributes with default values that were missing from the <add> are filled in. If the write-back attribute of the <required-attr> element is set, the missing values are also written back to the source object. The template-dn attribute is filled in if a <template> is specified.
See <create-rules>.
( match-attr * , required-attr * , template ? )