Import rules
Import rules allow you to define custom criteria, referred to as “conditions”, to evaluate discovered objects and:
Add discovered systems as target systems using a target system import rule
Bind systems to managed system policies using a managed system import rule
Bind accounts to managed system policies using an manged account import rule
Delete systems and accounts
Unbind (offboard) managed systems and accounts
This can happen during auto discovery , at contact between the Local Workstation Service and the Bravura Privilege server or you can evaluate objects then choose to apply the results.
Import rule order
The import rules are processed by the Discovery service (iddiscover) in this order:
Target systems
Managed systems
Managed accounts
You define the order of bind vs unbind actions on the managed system and managed account import rule configuration pages. The unbind rules have to be sorted at the end of the list in order for them to act as intended.
Once a rule matches an object (system or account), that object is not available for the following rules; so, in case multiple rules match a single object, the first rule to match applies.
Once a match is made and a target is created or an object is managed or unbound, the rules will evaluate again against that object only if the rule is updated, or an attribute relevant to the rule criteria changes its value. For more details, see Re-evaluating import rules .
See also
Import rules are part of the infrastructure auto discovery feature. It is recommended that you read Implementing Infrastructure Auto Discovery before configuring these settings.