Introduction
The resource type uniquely describes a type of resource within a target system. You can build and structure your own resource types depending on your needs. For example in Active Directory there are Security Groups
and Distribution Groups
but you might wanna structure those groups even further by creating your own resource types within the CoreOne Meta Directory. By doing so you could further divide Security Groups
into Application Groups
which are being used in your software distribution software and File System Groups
which are being used to control access on your local file system. This categorization not only helps you to structure your groups but also enables you to create Resource Definition Templates which then can be used to create managed resources.
A resource type is always linked to a target system and also defines the available attributes for the given type.
Management Mode
Each resource type has a management mode. The management mode defines what features are available to the resources of this type.
Unmanaged Resource
Any resource that is present in the target system but is not managed by the CoreOne Suite is called a unmanaged. On the target system configuration you can enable “show unmanaged resources”. If you do so, you see all unmanaged resources that an identity is member of. You can even add or remove resources and the action will be tracked in the audit trail. But as this is an unmanaged resource, this has no effect on processes like reconciliation and so on.
Linked Resource
This is the most common use case. A resource was created in the target system and the CoreOne Suite shall now manage the membership of those resources. Processes like reconciliation takes places for those resources but we do not manage the lifecycle of the resource itself. This means, if someone would rename or delete the resource in the target system, no actions will be taken by the CoreOne Suite.
Managed Resource
...
Properties
Whenever you are creating of updating a identity type, you have to specify the following properties:
Property | Data Type | Mandatory | Example | Description |
---|---|---|---|---|
| String |
| Active Directory Security Group | A readable name used in the UI. |
| Drop Down |
| Active Directory | Any target system configured in the system. |
| Drop Down |
| AD - Security Group | A specific resource type offered by the selected target system. |
| Bool | False | If you simply want to link a group, select this checkbox. For more information on this see the Management Mode documentation. | |
| Drop Down | () | Active Directory Security Group | Any resource provisioning configuration configured in the system matching the selected system resource type. |
| Int | 0 | Whenever a resource has to be deallocated from an identity, you can specify a delay in seconds if needed. | |
| Int | 48 | Whenever you would like to assign resources before the start of the first employment of a Core Identity, you can configure a early resource allocation time span in hours. |