6.8 Event Transformation - Scope Filtering - Exclude Subtrees

This rule excludes all events that occur in a specific subtree. Implement the rule on the Subscriber Event Transformation or the Publisher Event Transformation policy in the driver.

There are two steps involved in using the predefined rules: creating a policy in the Event Transformation policy set, and importing the predefined rule. If you already have an Event Transformation policy that you want to add this rule to, skip to Importing the Predefined Rule.

6.8.1 Creating a Policy

  1. Open the Identity Manager Driver Overview for the driver you want to manage.

  2. Click the Event Transformation Policy object on the Publisher or Subscriber channel.

  3. Click Insert.

  4. Name the policy, make sure to implement the policy with the Policy Builder, then click OK.

    The Rule Builder is launched.

  5. Continue with Section 6.8.2, Importing the Predefined Rule.

6.8.2 Importing the Predefined Rule

  1. In the Rule Builder, click Insert.

  2. Select Event Transformation - Scope Filtering - Excluding subtrees.

    Event Transformation - scope filtering - exclude subtrees

  3. To edit the rule, click Event Transformation - Scope Filtering - Excluding subtrees in the Rule Builder.

  4. Delete [Enter a subtree to exclude] in the Value field.

  5. Click the browse button to browse the Identity Vault for the part of the tree you want to exclude events from synchronizing, then click OK.

  6. Click OK.

6.8.3 How the Rule Works

This rule is used when you want to exclude part of the Identity Vault or connected system from synchronizing. When an event occurs in that specific part of the Identity Vault, it is vetoed. You can add additional subtrees to be excluded by copying and pasting the If Source DN condition.