Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

000036921 - Clearing an Active Directory Account Attribute in RSA Identity Governance & Lifecycle

Document created by RSA Customer Support

on Nov 22, 2018

Version 1Show Document

Like • Show 0 Likes0
Comment • 0
View in full screen mode

Article Content

Article Number	000036921
Applies To	RSA Product Set: RSA Identity Governance & Lifecycle RSA Version/Condition: All
Issue	There are cases where you want to remove the value of an AD attribute make it to not set instead of adding a Null value to it. Example of an AD attribute 'Department' which does not have any value.
Resolution	We could get this to work with native AFX. Using remove_<attr> as the attribute name within the AFX Capability Parameter Name works for the removal of a single-value account attribute. However, you must know the value which is currently set or this will not work. Update AFX Capability for Update Account to the following: TESTING: We have the department attribute set for an account in AD. To clear the value for the department attribute you must pass current value of the attribute.

Attachments

Outcomes

0 Comments

Recommended Content