{"id":91,"date":"2016-06-08T10:10:07","date_gmt":"2016-06-08T10:10:07","guid":{"rendered":"http:\/\/www.enhisecure.com\/isecureblog\/?p=91"},"modified":"2016-07-14T19:41:59","modified_gmt":"2016-07-14T15:11:59","slug":"enabling-group-attributes-with-delimited-files-in-identityiq","status":"publish","type":"post","link":"https:\/\/www.enhisecure.com\/isecureblog\/2016\/06\/08\/enabling-group-attributes-with-delimited-files-in-identityiq\/","title":{"rendered":"Enabling group attributes with Delimited Files in IdentityIQ"},"content":{"rendered":"

It is very usual that delimited file applications can contain groups. Along with specifying group schema in configuration , we need to specify the group attribute i.e., the attribute which speaks about the membership of an account in a group.<\/p>\n

In Sailpoint’s<\/a>\u00a0IdentityIQ<\/a> 6.2 and previous versions, we have a GUI facility to mark such group attribute. From Sailpoint’s<\/a>\u00a0IdentityIQ<\/a> 6.4, there is no such GUI facility to mark group attribute. This can be modified by modifying the definition in debug pages of IdentityIQ<\/a>.<\/p>\n

Here is how you mark group attribute:<\/p>\n

    \n
  1. \u00a0Open the debugpages which are available at <iiqhostname>\/debug<\/li>\n
  2. Select Application as object Type and open the xml representing your application<\/li>\n
  3. Go to the tag that defines schemas and then to the specific schema that represents your application accounts.<\/li>\n
  4. Find the AttributeDefinition tag that represents your group attribute.<\/li>\n
  5. Add the following attribute to that tag.<\/li>\n<\/ol>\n

    schemaObjectType=”group”<\/p>\n

    Please find the following screenshot for reference :-<\/p>\n

    \"schemaobjecttype\"<\/p>\n

    Run required aggregations to see that your group structure is intact.<\/p>\n

     <\/p>\n","protected":false},"excerpt":{"rendered":"

    It is very usual that delimited file applications can contain groups. Along with specifying group schema in configuration , we need to specify the group attribute i.e., the attribute which speaks about the membership of an account in a group. In Sailpoint’s\u00a0IdentityIQ 6.2 and previous versions, we have a GUI facility to mark such group […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,15,14],"tags":[],"class_list":["post-91","post","type-post","status-publish","format-standard","hentry","category-identity-governance","category-implementation-problems","category-sailpoint"],"_links":{"self":[{"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/posts\/91","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/comments?post=91"}],"version-history":[{"count":7,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/posts\/91\/revisions"}],"predecessor-version":[{"id":120,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/posts\/91\/revisions\/120"}],"wp:attachment":[{"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/media?parent=91"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/categories?post=91"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enhisecure.com\/isecureblog\/wp-json\/wp\/v2\/tags?post=91"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}