You cannot use the Salesforce.com connector to delete a Salesforce.com user, as Salesforce.com does not support account deletion.
CA IdentityMinder simulates account deletion when any operation that attempts to delete a Salesforce.com account directly or indirectly occurs, for example, removing the role that created that account.
When the option Accounts will be deleted from the provisioning directory and suspended on the managed endpoint is selected on the Endpoint Settings tab in the User Console, the account is deactivated and placed in a group called CA ILM SFDC Connector Suspended on the Salesforce.com endpoint.
During an add operation, the Salesforce.com connector verifies that the account exists on the Salesforce.com endpoint and checks to see if the account is in the CA ILM SFDC Connector Suspended group.
If the account is in the CA ILM SFDC Connector Suspended group, CA IdentityMinder removes the Suspended membership and modifies the account, instead of adding a new account.
During an explore and correlate, CA IdentityMinder ignores all accounts in the CA ILM SFDC Connector Suspended group.
The Salesforce.com connector creates the CA ILM SFDC Connector Suspended group as required.
Note: For more information, about suspending and resuming a user account, see the CA IdentityMinder User Console online help.
|
Copyright © 2013 CA.
All rights reserved.
|
|