Values and formats for CSV access data (group)

A group access CSV file can contain multiple values and supported formats.

Consider these points before you work with any CSV files for a group access:

  • If you use a custom label for AccessType, specify the key in the CSV file.
  • If you use a custom label for badge text, add a $ prefix on the key. For example, $mail.
  • Define multiple values for search terms and badges with a semicolon (;) separator.
  • Define the AccessType hierarchy with a colon (:) separator.
  • Use the badgeText~badgeStyle format for badges.

Define CSV columns for a group access as follows:

Table 1. CSV fields and values. CSV fields and values
Field name Value
GROUP_DN, GROUP_NAME Not modifiable.
DEFINE_AS_ACCESS TRUE or FALSE. If you do not assign any value, then FALSE is assumed.
ACCESS_NAME Required for services and groups, and contains a maximum length of 240 characters. This field is not available for roles.
ACCESS_TYPE Required. You must specify an access type that is defined in IBM Verify Identity Governance.
ACCESS_DESCRIPTION Contains a maximum length of 240 characters.
ICON_URL Provide a valid icon URL value on the access definition.
SEARCH_TERMS Each search term contains a maximum length of 80 characters. You can have multiple search terms.
ADDITIONAL_INFORMATION Contains a maximum length of 1024 characters.
BADGES The maximum length for each badge text is 512 characters. You can have multiple badges. The badge text that is prefixed with a $ sign cannot contain delimiter characters such as ., ;, =, or white space.

A group access CSV file for an export or import operation in the IBM Verify Identity Governance administration console contains these columns with sample values and supported formats:

Table 2. Part 1 of 2: Group access CSV file values, formats
GROUP_NAME DEFINE_AS_ACCESS ACCESS_NAME ACCESS TYPE ACCESS_DESCRIPTION ICON_URL
admin FALSE Access Application:Group This access is for the admin group. http://www-03.ibm.com/ibm/history/exhibits/logo/images/920911.jpg
AIX Group TRUE AIX Group AccessGroup This access is for the AIX group. /itim/ui/custom/ui/images/homepage/RequestAccess.png
Default Group TRUE default access EmailGroup:Department:Location This access is a default group access. http://www-03.ibm.com/ibm/history/exhibits/logo/images/920911.jpg
Table 3. Part 2 of 2: Group access CSV file values, formats
GROUP_NAME SEARCH_TERMS ADDITIONAL_INFORMATION BADGES SERVICE_DN
admin Group;Group access Group that is used by a client user. $highrisk~red erglobalid=5628670506891199803,ou=groups,erglobalid=000000
AIX Group Employee;Group;AccessGroup Used by the customer to deploy server. Group~yellow erglobalid=5628669752130902869,ou=groups,erglobalid=000000
Default Group Mail;Unique ID BVT server that is used to run BVT from developer and tester. $mailer~yellow;highrisk~red erglobalid=5628670337030215245,ou=groups,erglobalid=000000