Values and formats for CSV access data (role)
A role access CSV file can contain multiple values and supported formats.
Consider these points before you work with any CSV files for a role access:
- If you use a custom label for AccessType, specify the key in the CSV file.
- If you use a custom label for badge text, add a $ prefix on the key. For example, $mail.
- Define multiple values for search terms and badges with a semicolon (;) separator.
- Define the AccessType hierarchy with a colon (:) separator.
- Use the badgeText~badgeStyle format for badges.
Define CSV columns for a role access as follows:
Field name | Value |
---|---|
ROLE_DN, ROLE_NAME | Not modifiable. |
DEFINE_AS_ACCESS | TRUE or FALSE. If you do not assign any value, then FALSE is assumed. |
ACCESS_NAME | Required for services and groups, and contains a maximum length of 240 characters. This field is not available for roles. |
ACCESS_TYPE | Required. You must specify an access type that is defined in IBM Verify Identity Governance. |
ACCESS_DESCRIPTION | Contains a maximum length of 240 characters. |
ICON_URL | Provide a valid icon URL value on the access definition. |
SEARCH_TERMS | Each search term contains a maximum length of 80 characters. You can have multiple search terms. |
ADDITIONAL_INFORMATION | Contains a maximum length of 1024 characters. |
BADGES | The maximum length for each badge text is 512 characters. You can have multiple badges. The badge text that is prefixed with a $ sign cannot contain delimiter characters such as ., ;, =, or white space. |
A role access CSV file for an export or import operation in the IBM Verify Identity Governance administration console contains these columns with sample values and supported formats:
ROLE_NAME | DEFINE_AS_ACCESS | ACCESS TYPE | ICON_URL |
---|---|---|---|
admin | TRUE | Application:Role:Manager | /itim/ui/custom/ui/images/homepage/RequestAccess.png |
AIX Role | TRUE | Mail:Role | http://www-03.ibm.com/ibm/history/exhibits/logo/images/920911.jpg |
Default Role | FALSE | AccessRole | /itim/ui/custom/ui/images/homepage/RequestAccess.png |
ROLE_NAME | SEARCH_TERMS | ADDITIONAL_INFORMATION | BADGES | SERVICE_DN |
---|---|---|---|---|
admin | Application; Role access | Role that is used by a client user. | $admin~yellow;custom~green | erglobalid=5628670506891199803,ou=roles,erglobalid=000000 |
AIX Role | Employee;Role;Role access | Used by the customer to deploy server. | Role~grey | erglobalid=5628669752130902869,ou=roles,erglobalid=000000 |
Default Role | Mail;Unique ID | BVT server that is used to run BVT from developer and tester. | $mailrisk~red | erglobalid=5628670337030215245,ou=roles,erglobalid=000000 |