Setting the account deletion delay parameter

An account with a 'Pending deletion' status can be removed from that status and restored within the deletion delay period. IBM Security QRadar® Suite Software provides a method to set the account deletion delay period by using the modify_deployment tool.

Before you begin

Ensure that you have the command-line interface (CLI) utility cpctl installed from the cp-serviceability pod. For more information, see Installing the cpctl utility.

About this task

An account that is selected for deletion is immediately unavailable with a 'Pending deletion' status. However, the deletion can be canceled and the account can be restored by a cluster administrator within the account deletions delay period. The default delay period is 14 days.

Procedure

  1. Log in to your Red Hat® OpenShift® Container Platform cluster by typing either of the following commands, where <openshift_url> is the URL for your Red Hat OpenShift Container Platform environment.
    • Using a username and password.
      oc login <openshift_url> -u <username> -p <password>
    • Using a token.
      oc login --token=<token> --server=<openshift_url>
  2. Ensure that the serviceability pod is running by entering the following command. 
    oc get pod -lrun=cp-serviceability -n <cp4s_namespace>
  3. Connect to the serviceability pod by running the following command. 
    oc exec -ti deploy/cp-serviceability -- bash
  4. Run the following modify_deployment tool command with the number of days required for the account deletion delay period. 
    /opt/bin/modify_deployment -a=entitlements -p account_delete_delay_days:<number_of_days>
  5. Run the following execute_sequence action. 
    cpctl tools execute_sequence --sequence clx
  6. Run the exit command to disconnect from the serviceability pod.

Results

The next time that an account is deleted, the revised delay period is implemented. After the delay period, the account is deleted within a 24-hour deletion period and cannot be recovered in that period. See the following tables for examples of deletion implementation for different delay period settings.

Table 1. Implementing account deletion delays
Parameter value Delay period (variable) Deletion processing period (fixed)
0 None 24 hours
14 14 days 24 hours
30 30 days 24 hours