Creating an adoption policy

An administrator can create an adoption policy to use when reconciling accounts for one or more services. For example, you might create a policy that determines account ownership by attempting to match the family name of a user with the account user ID.

Before you begin

Depending on how your system administrator customized your system, you might not have access to this task. To obtain access to this task or to have someone complete it for you, contact your system administrator.

Before you can create an adoption policy, you must create one or more services to associate with the policy. If you try to create an adoption policy with a service that is already the target of an adoption policy, an error message is displayed.

About this task

To create a global adoption policy (for a specific service type), you must navigate to Configure System > Global Adoption policies.

Procedure

  1. From the navigation tree, select Manage Policies > Manage Adoption Policies.
  2. On the Work With Adoption Policies page, in the Adoption Policies table, click Create.
  3. On the Manage Adoption Policies page, on the General page, type a name for your adoption policy.
  4. Click the Services page, and then add one or more specific services to associate with the policy. To add one or more services:
    1. Click Add.
    2. On the Services page, type your search criteria, and then click Search.
    3. In the Services table, select one or more services.
    4. Click OK.
  5. On the Manage Adoption Policies page, click the Rule page, and then specify the attributes that the adoption policy uses to match accounts to users.
    If you want to define matches, click Add a match field to select the account and user attributes that must match during reconciliation. The user attribute list provides a few common attribute combinations when defining the match. Such a combination might be the first letter of a given name plus the family name. The combination might be the given name plus the first letter of the family name. If your adoption policy is more complex, you can choose the more advanced path by selecting Provide a Script. If you defined matches, the associated scripts are populated for you in the script definition field.
    Important: If you want to provide a script, the Verify Identity Governance Server does not verify that the JavaScript is correct. Verify that the JavaScript is correctly coded before using it to define the adoption policy.
  6. Click OK to save the changes.
  7. On the Success page, click Close. On the Work With Adoption Policies page, you can search to see the new adoption policy displayed in the table. The table controls can be used to change or delete the policy.