Values and formats for CSV access data (role)

A role access CSV file can contain multiple values and supported formats.

Consider these points before you work with any CSV files for a role access:

  • If you use a custom label for AccessType, specify the key in the CSV file.
  • If you use a custom label for badge text, add a $ prefix on the key. For example, $mail.
  • Define multiple values for search terms and badges with a semicolon (;) separator.
  • Define the AccessType hierarchy with a colon (:) separator.
  • Use the badgeText~badgeStyle format for badges.

Define CSV columns for a role access as follows:

Table 1. CSV fields and values. CSV fields and values
Field name Value
ROLE_DN, ROLE_NAME Not modifiable.
DEFINE_AS_ACCESS TRUE or FALSE. If you do not assign any value, then FALSE is assumed.
ACCESS_NAME Required for services and groups, and contains a maximum length of 240 characters. This field is not available for roles.
ACCESS_TYPE Required. You must specify an access type that is defined in IBM Verify Identity Governance.
ACCESS_DESCRIPTION Contains a maximum length of 240 characters.
ICON_URL Provide a valid icon URL value on the access definition.
SEARCH_TERMS Each search term contains a maximum length of 80 characters. You can have multiple search terms.
ADDITIONAL_INFORMATION Contains a maximum length of 1024 characters.
BADGES The maximum length for each badge text is 512 characters. You can have multiple badges. The badge text that is prefixed with a $ sign cannot contain delimiter characters such as ., ;, =, or white space.

A role access CSV file for an export or import operation in the IBM Verify Identity Governance administration console contains these columns with sample values and supported formats:

Table 2. Part 1 of 2: Role access CSV file values, formats
ROLE_NAME DEFINE_AS_ACCESS ACCESS TYPE ICON_URL
admin TRUE Application:Role:Manager /itim/ui/custom/ui/images/homepage/RequestAccess.png
AIX Role TRUE Mail:Role http://www-03.ibm.com/ibm/history/exhibits/logo/images/920911.jpg
Default Role FALSE AccessRole /itim/ui/custom/ui/images/homepage/RequestAccess.png
Table 3. Part 2 of 2: Role access CSV file values, formats
ROLE_NAME SEARCH_TERMS ADDITIONAL_INFORMATION BADGES SERVICE_DN
admin Application; Role access Role that is used by a client user. $admin~yellow;custom~green erglobalid=5628670506891199803,ou=roles,erglobalid=000000
AIX Role Employee;Role;Role access Used by the customer to deploy server. Role~grey erglobalid=5628669752130902869,ou=roles,erglobalid=000000
Default Role Mail;Unique ID BVT server that is used to run BVT from developer and tester. $mailrisk~red erglobalid=5628670337030215245,ou=roles,erglobalid=000000