Orphan accounts

Orphan accounts are accounts on the managed resource whose owner in the Identity Manager Server cannot be determined.

Orphan accounts are identified during reconciliation when the applicable adoption rule cannot successfully determine the owner of an account. You can also make an account into an orphan account if the current owner of the account is not correct.

Orphan accounts are included in the list of accounts that are associated with a service. You can suspend or delete orphan accounts or assign them to users.
  • When you assign an orphan account to a user, the user becomes the owner of the account. Also, the policies that are applicable to the users are evaluated and enforced for the account. The owner can manage the account with the Self Service or the Identity Manager Service Center user interface.
  • When you suspend an orphan account, it is suspended on the Identity Manager Server and on the managed resource.
  • When you delete an orphan account, it is deleted on the managed resource.