Example For Using TEWS To Modify Admin Role Membership Rule
Article ID: 400203
Updated On:
Products
CA Identity Manager
CA Identity Suite
Issue/Introduction
Providing an example of a soap TEWS request showing how it could be used for adding and/or removing a membership policy in an Admin Role.
Environment
All Identity Manager
Resolution
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsdl="http://tews6/wsdl">
<soapenv:Header/>
<soapenv:Body>
<wsdl:TaskContext>
<wsdl:admin_id>USER</wsdl:admin_id>
<wsdl:admin_password>PASSWORD</wsdl:admin_password>
</wsdl:TaskContext>
<wsdl:ModifyAdminRole>
<wsdl:ModifyAdminRoleSearch>
<wsdl:Subject index="?">
<wsdl:UniqueName>TestAdminRole</wsdl:UniqueName>
</wsdl:Subject>
</wsdl:ModifyAdminRoleSearch>
<wsdl:ModifyAdminRoleMembersTab>
<wsdl:Policy>
<wsdl:remove index="?">
<AccessTask><ScopeRule object="ACCESS TASK" purpose="*"><All/></ScopeRule></AccessTask>
<Group><ScopeRule object="GROUP" purpose="*"><All/></ScopeRule></Group>
<Member><MemberRule><AttributeExpression attribute="%USER_ID%" comparator="EQUALS" value="testuser1"/><Or/><AttributeExpression attribute="%USER_ID%" comparator="EQUALS" value="testuser2"/></MemberRule></Member>
<Org><ScopeRule object="ORGANIZATION" purpose="*"><All/></ScopeRule></Org>
<User><ScopeRule object="USER" purpose="*"><All/></ScopeRule></User>
</wsdl:remove>
<wsdl:add index="?">
<AccessTask><ScopeRule object="ACCESS TASK" purpose="*"><All/></ScopeRule></AccessTask>
<Group><ScopeRule object="GROUP" purpose="*"><All/></ScopeRule></Group>
<Member><MemberRule><AttributeExpression attribute="%USER_ID%" comparator="EQUALS" value="testuser1"/><Or/><AttributeExpression attribute="%USER_ID%" comparator="EQUALS" value="testuser3"/></MemberRule></Member>
<Org><ScopeRule object="ORGANIZATION" purpose="*"><All/></ScopeRule></Org>
<User><ScopeRule object="USER" purpose="*"><All/></ScopeRule></User>
</wsdl:add>
</wsdl:Policy>
</wsdl:ModifyAdminRoleMembersTab>
</wsdl:ModifyAdminRole>
</soapenv:Body>
</soapenv:Envelope>
Feedback
Yes
No
Powered by
