Skip to main content

Default rule sets

Bravura Security Fabric ships with the following blackboard rule sets. You can modify them or use them as an example of how to add your own rules:

Operation dependency attribute	Description
idsynch::addnACUA	The ACUA (Create account) operation on these target system types: Exchange 2007 Server (64 bit) SharePoint SQL Server is dependent on the ACUA operation on Active Directory DN.
idsynch::addnNR	These network resource operations on the SMB Protocol for Active Directory DN target system type: NRCR (Network resource create) NRDL (Network resource delete) NRMV (Network resource move) NRUP (Network resource update) are dependent on the ACUA (create account) operation on Active Directory DN. The longid output from the ACUA operation is used as input on acctid for the network resource operations.
idsynch::crtg	These group operations: GRUA (Assign group) GROA (Add group owner) GRGA (Add child group) GOGA (Add owner group) are dependent on the CRTG (Create group) operation for the same target system. There is no data exchanged between these operations.
idsynch::delu	The ACUA (Create account) operation is dependent on the DELU (Delete user) operation for the same target system. There is no data exchanged between these operations. This action is used for roles.
idsynch::groupgroupadd	The GRUA (Assign group) operation is dependent on the GRGA (Add child group) operation for the same target system. There is no data exchanged between these operations.
idsynch::groupowner	The GROA (Add group owner) and GOGA (Add owner group) operations are dependent on the GROD (Delete group owner) and GOGD (Delete owner group) operations for the same target system. There is no data exchanged between these operations.
idsynch::groupowneradd	The GRUA (Assign group) and GRGA (Add child group) operations are dependent on the GROA (Add group owner) and GOGA (Add owner group) operations for the same target system. There is no data exchanged between these operations.
idsynch::grud	The DELU (Delete user) and GRUA (Add group membership) operations are dependent on the GRUD (group user delete) operation for the same target system. There is no data exchanged between these operations. This action is used for roles.
idsynch::longid	The GRUA (Add group membership) operation is dependent on the ACUA (Create account) operation. The longid from the connector output is stored on the "blackboard”, and sent to the connector input as the acctid value.
idsynch::ndsACUA	The ACUA (Create account) operation on a Groupwise Domain type target system is dependent on the ACUA operation on an NDS type target system. There is no data exchanged between these operations.
idsynch::rename	The RENU (Rename account) operation on a target system is dependent on the completion of any operation on the same target system. There is no data exchanged between these operations.
idsynch::win2kACUA	The ACUA (Create account) operation on these target system types: Exchange 2007 Server (64 bit) SharePoint SQL Server is dependent on the ACUA operation on Active Directory. For example; SharePoint is tightly integrated with Active Directory. These rules exists because SharePoint requires that its users also have Active Directory accounts. Similarly, SQL Server supports Windows user authentication, which requires that users also have Active Directory accounts. These rules do not adversely affect standard users (whose accounts are stored in SQL server and separate from any Windows domain).
idsynch::win2kNR	The network resource operations on the SMB Protocol for Legacy Active Directory target system type: NRCR (Network resource create) NRDL (Network resource delete) NRMV (Network resource move) NRUP (Network resource update) is dependent on the ACUA operation on Active Directory. The longid output from the ACUA operation is used as input on acctid for the network resource operations.

In this section:

Was this helpful?

Would you like to provide feedback? Just click here to suggest edits.