com.ibm.itim.dataservices.model.domain
Class IdentityExclusionList

java.lang.Object
  |
  +--com.ibm.itim.dataservices.model.domain.IdentityExclusionList

public class IdentityExclusionList
extends java.lang.Object

Class that holds the list of identities (user id's) that should be excluded from any matching algorithms used when trying to identify account owners during a reconciliation process. A different list of excluded identities can be created for each type of service in the system. For example, the presence of the "root" identity in the exclusion list for the Solaris service type (profile) will avoid the security problem that can arise if a person creates an alias called "root" which the system then uses to determine that they are the owner of the root account on a Solaris system.


Constructor Summary
IdentityExclusionList(DistinguishedName tenantDN)
          Constructs the object with the context of a tenant.
 
Method Summary
 boolean isIdentityExcluded(java.lang.String serviceProfileName, java.lang.String identity)
          Returns whether or not a given identity is excluded for a given service type (profile).
 
Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

IdentityExclusionList

public IdentityExclusionList(DistinguishedName tenantDN)
                      throws ModelCommunicationException,
                             ObjectNotFoundException
Constructs the object with the context of a tenant.

Parameters:
tenantDN - DistinguishedName of the context tenant.
Method Detail

isIdentityExcluded

public boolean isIdentityExcluded(java.lang.String serviceProfileName,
                                  java.lang.String identity)
Returns whether or not a given identity is excluded for a given service type (profile).

Parameters:
serviceProfileName - Name of the profile that identifies the type service being checked.
identity - Identity being checked.
Returns:
True if identity is excluded, false if not.


IBM Tivoli Identity Manager 4.6
© Copyright International Business Machines Corporation 2005. All rights reserved. US Government Users Restricted Rights Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.