Hi @anandan07,
You can use the SailPoint Service Standard Before Provisioning Rule:
Services Standard Before Provisioning Rule - Identity Security Cloud (ISC) / ISC Discussion and Questions - SailPoint Developer Community
This is a standard rule developed by SailPoint, which includes various operations. You must work with your PS (Professional Services) team to deploy this rule.
Once deployed, you can attach the rule to your source:
Then, configure the cloudServicesIDNSetup parameter of your source as follows:
[
{
"eventActions": [
{
"Action": "ChangeOperation",
"Attribute": null,
"Value": "Delete"
}
],
"Identity Attribute Triggers": [
{
"Attribute": "accountsToDelete",
"Value": "true",
"Operation": "eq"
}
],
"Operation": "Modify"
}
]
Some connectors do not support the Enable/Disable operation. To work around this limitation, we enforce synchronization on a selected attribute on the target system.
In our case, when the lifecycleState is changed to archive, we set the identity attribute accountsToDelete to true. Based on the configuration provided above, this attribute is also synchronized to an arbitrary attribute in LDAP to trigger synchronization. The Before Provisioning Rule will then detect this synchronization (Modify operation) and change it to a Delete operation.