FIM Event Broker Policy
Resource Type: ManagementPolicyRule
  1. DEEWR-Administration: Event Broker is notified when claim resources are updated
  2. DEEWR-Administration: Event Broker is notified when DEEWR-role resources are updated
  3. DEEWR-Administration: Event Broker is notified when role template resources are updated
  4. DEEWR-Administration: Event Broker is notified when synchronization rules are updated
  5. DEEWR-Administration: Event Broker is notified when user resources are updated
  6. DEEWR-General workflow: Event Broker is notified when claim resources are updated
  7. DEEWR-General workflow: Event Broker is notified when user resources are updated
  8. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-org resources are updated
  9. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-role resources are updated
  10. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-site resources are updated
  11. DEEWR-Synchronization: Event Broker is notified when DRE resources are created, deleted or updated
  12. DEEWR-Synchronization: Event Broker is notified when ERE resources are deleted or updated
Resource Type: Set
  1. Administrators
  2. All DEEWR Claims
  3. All DEEWR Users
  4. All DEEWR-esg-orgs
  5. All DEEWR-esg-role templates
  6. All DEEWR-esg-roles
  7. All DEEWR-esg-sites
  8. All DEEWR-roles
  9. All Detected Rule Resources
  10. All expected rule resources
  11. All People
  12. All Synchronization Rule Resources
  13. DEEWR-Forefront Identity Manager Service Account
  14. Synchronization Engine
Resource Type: WorkflowDefinition
  1. DEEWR - Event Broker Data Changes
  2. DEEWR - Event Broker Rule Changes
Resource Type: ManagementPolicyRule
1. DEEWR-Administration: Event Broker is notified when claim resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when claim resources are updated
Disabled False
DisplayName DEEWR-Administration: Event Broker is notified when claim resources are updated
GrantRight False
PrincipalSet All DEEWR Users
ResourceCurrentSet All DEEWR Claims
ResourceFinalSet All DEEWR Claims
ManagementPolicyRuleType Request
2. DEEWR-Administration: Event Broker is notified when DEEWR-role resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when DEEWR-role resources are updated
Disabled False
DisplayName DEEWR-Administration: Event Broker is notified when DEEWR-role resources are updated
GrantRight False
PrincipalSet All DEEWR Users
ResourceCurrentSet All DEEWR-roles
ResourceFinalSet All DEEWR-roles
ManagementPolicyRuleType Request
3. DEEWR-Administration: Event Broker is notified when role template resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when role template resources are updated
Disabled False
DisplayName DEEWR-Administration: Event Broker is notified when role template resources are updated
GrantRight False
PrincipalSet All DEEWR Users
ResourceCurrentSet All DEEWR-esg-role templates
ResourceFinalSet All DEEWR-esg-role templates
ManagementPolicyRuleType Request
4. DEEWR-Administration: Event Broker is notified when synchronization rules are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when synchronization rules are updated
Disabled False
DisplayName DEEWR-Administration: Event Broker is notified when synchronization rules are updated
GrantRight False
PrincipalSet Administrators
ResourceCurrentSet All Synchronization Rule Resources
ResourceFinalSet All Synchronization Rule Resources
ManagementPolicyRuleType Request
5. DEEWR-Administration: Event Broker is notified when user resources are updated ^Top
ActionParameter
  • AccountName
  • AD_UserCannotChangePassword
  • Address
  • Assistant
  • AuthNLockoutRegistrationID
  • AuthNWFLockedOut
  • AuthNWFRegistered
  • City
  • Company
  • CostCenter
  • CostCenterName
  • Country
  • DEEWR-claimID
  • DEEWR-codeWord
  • DEEWR-dateOfBirth
  • DEEWR-DeptID
  • DEEWR-esg-contractID
  • DEEWR-esg-organisationID
  • DEEWR-esg-orgID
  • DEEWR-esg-roleID
  • DEEWR-esg-roleType
  • DEEWR-esg-securityReports
  • DEEWR-esg-siteID
  • DEEWR-friendlyNames
  • DEEWR-info
  • DEEWR-isActive
  • DEEWR-lastLogonDatetime
  • DEEWR-lockoutTime
  • DEEWR-roleID
  • DEEWR-selfServicePassword
  • DEEWR-siteID
  • DEEWR-uid
  • DEEWR-unicodePwd
  • DEEWR-userAccountControl
  • DEEWR-VascoDigipassData
  • DEEWR-vasco-linkVascoUserToVascoDigipass
  • Department
  • Description
  • DetectedRulesList
  • DisplayName
  • Domain
  • DomainConfiguration
  • Email
  • EmployeeEndDate
  • EmployeeID
  • EmployeeStartDate
  • EmployeeType
  • ExpectedRulesList
  • ExpirationTime
  • FirstName
  • FreezeCount
  • FreezeLevel
  • IsRASEnabled
  • JobTitle
  • lastLogon
  • LastName
  • LastResetAttemptTime
  • LoginName
  • MailNickname
  • Manager
  • MiddleName
  • MobilePhone
  • MVObjectID
  • ObjectSID
  • ObjectType
  • OfficeFax
  • OfficeLocation
  • OfficePhone
  • Photo
  • PostalCode
  • ProxyAddressCollection
  • Register
  • RegistrationRequired
  • ResetPassword
  • SIDHistory
  • TimeZone
  • whenCreated
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when user resources are updated
Disabled False
DisplayName DEEWR-Administration: Event Broker is notified when user resources are updated
GrantRight False
PrincipalSet All DEEWR Users
ResourceCurrentSet All People
ResourceFinalSet All People
ManagementPolicyRuleType Request
6. DEEWR-General workflow: Event Broker is notified when claim resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when claim resources are updated
Disabled False
DisplayName DEEWR-General workflow: Event Broker is notified when claim resources are updated
GrantRight False
PrincipalSet DEEWR-Forefront Identity Manager Service Account
ResourceCurrentSet All DEEWR Claims
ResourceFinalSet All DEEWR Claims
ManagementPolicyRuleType Request
7. DEEWR-General workflow: Event Broker is notified when user resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when user resources are updated
Disabled False
DisplayName DEEWR-General workflow: Event Broker is notified when user resources are updated
GrantRight False
PrincipalSet DEEWR-Forefront Identity Manager Service Account
ResourceCurrentSet All DEEWR Users
ResourceFinalSet All DEEWR Users
ManagementPolicyRuleType Request
8. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-org resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when DEEWR-esg-org resources are updated
Disabled False
DisplayName DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-org resources are updated
GrantRight False
PrincipalSet Synchronization Engine
ResourceCurrentSet All DEEWR-esg-orgs
ResourceFinalSet All DEEWR-esg-orgs
ManagementPolicyRuleType Request
9. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-role resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when DEEWR-esg-role resources are updated
Disabled False
DisplayName DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-role resources are updated
GrantRight False
PrincipalSet Synchronization Engine
ResourceCurrentSet All DEEWR-esg-roles
ResourceFinalSet All DEEWR-esg-roles
ManagementPolicyRuleType Request
10. DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-site resources are updated ^Top
ActionParameter
  • *
ActionType
  • Add
  • Create
  • Delete
  • Modify
  • Remove
ActionWorkflowDefinition
Description Event Broker is notified when DEEWR-esg-site resources are updated
Disabled False
DisplayName DEEWR-Synchronization: Event Broker is notified when DEEWR-esg-site resources are updated
GrantRight False
PrincipalSet Synchronization Engine
ResourceCurrentSet All DEEWR-esg-sites
ResourceFinalSet All DEEWR-esg-sites
ManagementPolicyRuleType Request
11. DEEWR-Synchronization: Event Broker is notified when DRE resources are created, deleted or updated ^Top
ActionParameter
  • Connector
  • Description
  • DisplayName
  • MVObjectID
  • ObjectType
  • ResourceParent
  • SynchronizationRuleID
ActionType
  • Create
  • Delete
  • Modify
ActionWorkflowDefinition
Description Event Broker is notified when DRE resources are created, deleted or updated
Disabled False
DisplayName DEEWR-Synchronization: Event Broker is notified when DRE resources are created, deleted or updated
GrantRight False
PrincipalSet Synchronization Engine
ResourceCurrentSet All Detected Rule Resources
ResourceFinalSet All Detected Rule Resources
ManagementPolicyRuleType Request
12. DEEWR-Synchronization: Event Broker is notified when ERE resources are deleted or updated ^Top
ActionParameter
  • StatusError
  • SynchronizationRuleStatus
ActionType
  • Delete
  • Modify
ActionWorkflowDefinition
Description Event Broker is notified when ERE resources are deleted or updated
Disabled False
DisplayName DEEWR-Synchronization: Event Broker is notified when ERE resources are deleted or updated
GrantRight False
PrincipalSet Synchronization Engine
ResourceCurrentSet All expected rule resources
ResourceFinalSet All expected rule resources
ManagementPolicyRuleType Request
Resource Type: Set
1. All DEEWR Users ^Top
Description All DEEWR Users
DisplayName All DEEWR Users
Filter /Person
Temporal False
2. All DEEWR Claims ^Top
Description All Claims
DisplayName All DEEWR Claims
Filter /DEEWR-claim
Temporal False
3. All DEEWR-roles ^Top
Description All DEEWR-roles
DisplayName All DEEWR-roles
Filter /DEEWR-role
Temporal False
4. All DEEWR-esg-role templates ^Top
Description All DEEWR-esg-role templates
DisplayName All DEEWR-esg-role templates
Filter /DEEWR-esg-roleTemplate
Temporal False
5. Administrators ^Top
DisplayName Administrators
ExplicitMember *** various ***
6. All Synchronization Rule Resources ^Top
DisplayName All Synchronization Rule Resources
Filter /SynchronizationRule
7. All People ^Top
DisplayName All People
Filter /Person
8. DEEWR-Forefront Identity Manager Service Account ^Top
Description Forefront Identity Manager Service Account resource
DisplayName DEEWR-Forefront Identity Manager Service Account
Filter /*[DisplayName = 'Forefront Identity Manager Service Account']
Temporal False
9. Synchronization Engine ^Top
DisplayName Synchronization Engine
ExplicitMember *** various ***
Filter /Person[ObjectID='FB89AEFA-5EA1-47F1-8890-ABE7797D6497']
10. All DEEWR-esg-orgs ^Top
Description All DEEWR-esg-orgs
DisplayName All DEEWR-esg-orgs
Filter /DEEWR-esg-org
Temporal False
11. All DEEWR-esg-roles ^Top
Description All DEEWR-esg-roles
DisplayName All DEEWR-esg-roles
Filter /DEEWR-esg-role
Temporal False
12. All DEEWR-esg-sites ^Top
Description All DEEWR-esg-sites
DisplayName All DEEWR-esg-sites
Filter /DEEWR-esg-site
Temporal False
13. All Detected Rule Resources ^Top
DisplayName All Detected Rule Resources
Filter /DetectedRuleEntry
14. All expected rule resources ^Top
DisplayName All expected rule resources
Filter /ExpectedRuleEntry
Resource Type: WorkflowDefinition
1. DEEWR - Event Broker Data Changes ^Top
Description This workflow writes to the log file used to inform the FIM MA to import data changes only
DisplayName DEEWR - Event Broker Data Changes
RequestPhase Action
RunOnPolicyUpdate False
Workflow Activity #1
EventBrokerChangesActivity
EndPointAddress http://localhost:59990/EventBroker/EventBrokerManagementStudio.svc
EndPointConfigurationName ServerNotifications
OperationListGuid c3cdef86-3c5c-4607-bc7d-e40321dbb64a
Description Invokes a specified Event Broker operation list. This activity should only be used to specify either an incoming operation list for the FIM Portal MA, or to point at a baselining operation list.
2. DEEWR - Event Broker Rule Changes ^Top
Description This workflow writes to the log file used to inform the FIM MA to import rule changes only
DisplayName DEEWR - Event Broker Rule Changes
RequestPhase Action
RunOnPolicyUpdate False
Workflow Activity #1
EventBrokerChangesActivity
EndPointAddress http://localhost:59990/EventBroker/EventBrokerManagementStudio.svc
EndPointConfigurationName ServerNotifications
OperationListGuid 1cf17c16-3932-41fb-9e21-5343d0cbdf44
Description Invokes a specified Event Broker operation list. This activity should only be used to specify either an incoming operation list for the FIM Portal MA, or to point at a baselining operation list.