The scripts are written using Microsoft VBScript. They are located in the scripts folder below the folder where the driver was installed (C:\Program Files\Novell\WSDriver by default).
Subscriber events are submitted to Subscriber.wsf, which then calls the script for the event. Modify the VBS file corresponding to the event type: Add.vbs, Modify.vbs, ModifyPassword.vbs, Delete.vbs, Move.vbs, Rename.vbs. Queries of the external system should be handled in Query.vbs.
The Publisher calls Poll.wsf periodically. The frequency of the poll is determined by the Polling Interval driver parameter (60 seconds by default). Edit Poll.wsf to allow the driver to respond to events in the external account management system.
The Publisher calls Heartbeat.wsf periodically to determine whether the external account management system is responding correctly.
Topics discussing the built-in functions in IDMLib.vbs are categorized as follows:
Returns the string value for the Driver parameter specified by the string ParamName.
Appends the specified message to the user-defined trace file.
Executes an external program using the specified command line, and returns its numerical exit code on completion.
Executes an external program using the specified command line, submits the strings from array Input on standard input, and returns output from standard output and standard error as an array. You may specify Empty for the Input parameter. The function returns when the program completes. The first element of the returned array is the program exit code. Subsequent elements (if any) are strings, one for each line that was output to standard output and standard error.
Set the status level and message to return to the Identity Manager engine when the script completes.
Set the status level and message to return to the Identity Manager engine when the script completes.
Set the status level and message to return to the Identity Manager engine when the script completes.
Set the status level and message to return to the Identity Manager engine when the script completes.
Set the status level and message to return to the Identity Manager engine when the script completes.
Set the status level and message to return to the Identity Manager engine when the script completes.
Returns the string value for the Subscriber parameter specified by the string ParamName.
Sets the command that the Subscriber return to the Identity Manager engine. This function must be called before using IDMWriteValue functions. If only a status needs to be returned, use one of the IDMStatus functions (see above).
Returns the number of values for the item specified by Name. (Items include event information and attribute changes.)
Returns an array of string values for the item specified by Name. If no values exist, Empty is returned.
Returns the string value for the item specified by Name. If multiple values exist for the item, it returns the first value. If no values exist, Empty is returned.
Sets a single string value for the item specified by Name to be returned to the driver engine when the script completes. You must call IDMSetCommand or one of the IDMStatus functions before calling this function.
Sets an array of string values for the item specified by Name to be returned to the driver engine when the script completes. You must call IDMSetCommand or one of the IDMStatus functions before calling this function.
Returns a named password specifed by Name from the Identity Manager engine. The value Empty is returned if no such password exists.
Returns the string value for the Publisher parameter specified by the string ParamName.
Sets the Publisher command specified by Command to return to the driver engine when IDMPublish is called.
Sets a single string value for the item specified by Name to be returned to the driver engine when IDMPublish is called.
Sets an array of string values for the item specified by Name to be returned to the driver engine when IDMPublish is called.
Submit the command and item values specified above to the driver engine for Publication to the identity vault.
Returns a named password specified by Name from the Identity Manager engine. The value Empty is returned if no such password exists.
Initializes a query to be submitted to the identity vault with the IDMQuery call. NOTE: Currently only queries that query a single object are supported.
Specifies the association of the identity vault object to query.
Specifies the DN of the identity vault object to query. Either the object’s association or DN must be specified. If both are specified, the association value is used by the Identity Manager engine.
Specifies a search condition to be used for the query, of the form Name=Value. Name specifies an attribute, and Value specifies a value it must match. The query will return only objects matching all specified conditions.
Specifies an attribute name whose values should be returned by the query. By default, all attributes are returned.
Specifies whether the association and DN of the parent of the queried object should be returned (ReadParent is boolean). The default is False.
Executes the query with the parameters specified by IDMQuerySetXXX calls. The function returns True if an object (called an instance) is returned.
Returns the association for the returned instance.
Returns the DN for the returned instance. The DN is in slash format, such as \ACME\Users\Bob.
Returns the class name for the returned instance.
Returns the association for instance’s parent object, if the ReadParent flag was specified.
Returns the DN for instance’s parent object, if the ReadParent flag was specified.
Returns an array containing the names of the attributes retrieved for the instance. Returns Empty if no attributes were retrieved.
Returns the number of attributes retrieved for the instance.
Returns an array of values for the attribute with the specified AttrName. Returns Empty if no values are available.
Returns a string value for the attribute with the specified AttrName. If multiple values are available for the attribute, the first one is returned. If no values are available, Empty is returned.
Use these functions in the heartbeat.wsf script to indicate the status of the external application.
Use these functions in the heartbeat.wsf script to indicate the status of the external application.
Use these functions in the heartbeat.wsf script to indicate the status of the external application.