Which IIQ version are you inquiring about?
8.5P1
Share all details about your problem, including any error messages you may have received.
Hello, We have RACF connector, where we want to identify the Locked RACF account. Though Application side there are REVOKED account, we are not sure how to read the attribute and show it as LOCKED. The account’s RU_LOCKED is set as Null\Empty.
For example below is the account in RACF target side (ATTRIBUTES=REVOKED)
USER=SPTEST4 NAME=SAIL POINT TEST OWNER=@@KMUSER CREATED=26.061
DEFAULT-GROUP=@@KMUSER PASSDATE=N/A PASS-INTERVAL= 54 PHRASEDATE=00.000
ATTRIBUTES=REVOKED
ATTRIBUTES=NOPASSWORD PASSPHRASE
REVOKE DATE=NONE RESUME DATE=NONE
LAST-ACCESS=UNKNOWN
CLASS AUTHORIZATIONS=NONE
INSTALLATION-DATA=TEST USERID FOR TESTING PASSWORD RESETS FOR SAILPO
INT
NO-MODEL-NAME
LOGON ALLOWED (DAYS) (TIME)
---------------------------------------------
ANYDAY ANYTIME
GROUP=@@KMUSER AUTH=USE CONNECT-OWNER=@@KMUSER CONNECT-DATE=26.061
CONNECTS= 00 UACC=NONE LAST-CONNECT=UNKNOWN
CONNECT ATTRIBUTES=NONE
REVOKE DATE=NONE RESUME DATE=NONE
GROUP=SPTEST AUTH=USE CONNECT-OWNER=SPTEST CONNECT-DATE=26.061
CONNECTS= 00 UACC=NONE LAST-CONNECT=UNKNOWN
CONNECT ATTRIBUTES=NONE
REVOKE DATE=NONE RESUME DATE=NONE
SECURITY-LEVEL=NONE SPECIFIED
CATEGORY-AUTHORIZATION
NONE SPECIFIED
SECURITY-LABEL=NONE SPECIFIED
When Sailpoint aggregate it, it flags the account as Disabled, instead of marking as LOCKED. Please help me on what the process to make the account as LOCKED.