com.ibm.itim.dataservices.model.domain
Class IdentityExclusionList

java.lang.Object
  |
  +--com.ibm.itim.dataservices.model.domain.IdentityExclusionList

public class IdentityExclusionList

extends java.lang.Object

Class that holds the list of identities (user id's) that should be excluded from any matching algorithms used when trying to identify account owners during a reconciliation process. A different list of excluded identities can be created for each type of service in the system. For example, the presence of the "root" identity in the exclusion list for the Solaris service type (profile) will avoid the security problem that can arise if a person creates an alias called "root" which the system then uses to determine that they are the owner of the root account on a Solaris system.

Constructor Summary

IdentityExclusionList(DistinguishedName tenantDN)
Constructs the object with the context of a tenant.

Method Summary

boolean

isIdentityExcluded(java.lang.String serviceProfileName, java.lang.String identity) Returns whether or not a given identity is excluded for a given service type (profile).

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

IdentityExclusionList

public IdentityExclusionList(DistinguishedName tenantDN)
                      throws ModelCommunicationException,
                             ObjectNotFoundException

Constructs the object with the context of a tenant.

Parameters:

tenantDN - DistinguishedName of the context tenant.

Method Detail

isIdentityExcluded

public boolean isIdentityExcluded(java.lang.String serviceProfileName,
                                  java.lang.String identity)

Returns whether or not a given identity is excluded for a given service type (profile).

Parameters:

serviceProfileName - Name of the profile that identifies the type service being checked.

identity - Identity being checked.

Returns:

True if identity is excluded, false if not.