Oracle Identity Manager 11g R2 – Reconciliation Action Rules

Event State Entity Type Action Description
No User Match Found User None Does not perform any action
Create User Creates a user in Oracle Identity Manager
No Account Match Found Account None Does not perform any action
User Matched User or Account None Does not perform any action
User Establish Link Modifies or deletes the matched user based on the change type
Account Establish Link Owner identified – creates an account
Users Matched User or Account None Does not perform any action
Account Matched Account None Does not perform an action
Establish Link Modifies or revokes the account based on the change type
Accounts Matched None Does not perform any action
No Role Match Found Role None Does not perform any action
Single Role Match Found Role None Does not perform an action
Establish Link Modify or delete a role
Role Membership Create role membership Grant a role member to Oracle Identity Manager
Delete role membership Delete a role member from Oracle Identity Manager
None Does not perform an action
Role Hierarchy Create role hierarchy Creates a role hierarchy in Oracle Identity Manager
Delete role hierarchy Delete a role hierarchy in Oracle Identity Manager
None Does not perform an action
Multiple Roles Matched Role, Role membership and Role Hierarchy None Does not perform an action
No Role Grant Match Found Role Membership None Does not perform an action
Create Role Member Creates a role member in Oracle Identity Manager
Single Role Grant Match Found Role Membership None Does not perform an action
Establish Link Delete role member
Multiple Role Grant Match Found Role Membership None Does not perform an action

Note: This state does not occur because the role grant match is done by looking for the primary key, which is a combination of the usr key and the group key.

No Role Parent Match Found Role Hierarchy None Does not perform an action
Create role parent Create a role parent in Oracle Identity Manager
Single Role Parent Match Found Role Hierarchy None Does not perform an action
Establish Link Delete role parent
Multiple Role Parent Match Found Role Hierarchy None Does not perform an action
Data Validation Failed Role, Role Hierarchy, Role Member Race condition Does not perform an action. The event needs to be re-evaluated.
Parent role not found Role Hierarchy Race condition Does not perform an action. The event needs to be re-evaluated.
Role member not found Role membership Race condition Does not perform an action. The event needs to be re-evaluated.

Leave a Reply

Your email address will not be published. Required fields are marked *