Deleting an identifier association

To delete an identifier association, you must be connected to the Enterprise Identity Mapping (EIM) domain in which you want to work and you must have the EIM access control required by the type of association that you want to delete.

To delete a source or an administrative association, you must have EIM access control at one of these levels:
  • Identifier administrator.
  • EIM administrator.
To delete a target association, you must have EIM access control at one of these levels:
  • Registry administrator.
  • Administrator for selected registries (for the registry definition that refers to the user registry that contains the target user identity).
  • EIM administrator.

To delete an identifier association, complete the following steps.

  1. From IBM® Navigator for i, expand Security > Enterprise Identity Mapping (EIM).
  2. Click Domain Management.
    • If you are not currently connected to the EIM domain controller, a Connect to EIM Domain Controller dialog box is displayed. Enter the connection information to use for the connection to the EIM domain controller. Click OK
  3. Right-click the EIM domain in which you want to work and select Open.
  4. Right-click Identifiers and select Open to display the list of EIM identifiers for the domain.
  5. Select an EIM identifier, right-click the EIM identifier, and select Properties.
  6. In the Properties dialog box, in the Associations portion of the page, right-click the association that you want to delete and click Remove to delete the association.
    Note: There is no confirmation prompt when you click Remove.
  7. Click OK to save your changes.
Note: When you remove a target association, any mapping lookup operations to the target registry that rely on the use of the deleted association may fail if other associations (either policy associations or identifier associations) do not exist for the affected target registry.

The only way to define a user identity to EIM is when you specify the user identity as part of creating an association, either an identifier association or a policy association. Consequently, when you delete the last target association for a user identity (whether by removing an individual target association or by removing a policy association), that user identity is no longer defined in EIM. Consequently, the user identity name and any lookup information for that user identity is lost.