Hello,
Talking with other colleagues we think this is impossible to record this from provisioning as the way that IM works.
In the IM management console when you click on the IME, then advanced, then provisioning; you will see the connection information to the provisioning server.
In that connection information is the admin Id. This “Proxy ID” is the ID that is passed from IM to provisioning server when we as the provisioning server to do any work. So the ID performing all tasks is not the user’s manager but the proxy ID that is passed by IM to prov server.
This compliance question has been asked before. The previous answers have been different from everything to report server to adding a custom tracking attribute that holds data related to the last change performed on a user and who performed it recorded in a multivalued attribute on the user’s corp record and synched to that users global account and consumed on an endpoint. Of course we do not help with custom tracking in this manner.
Basically you need to set a policy express policy that listens on task complete of the modify user, reads the task information such as task, initiator, time, date.
Then sets and syncs that information on a multivalued attribute that has already been created and mapped in the corp directory.xml. in the same provisioning server settings mentioned above that attribute is mapped to say %UCU01%.
Now what happened in IM is captured and saved to global record until the next modify user comes and overwrites it.
If they do not want to overwrite it then they have to append to the date in the attribute.
But take care, because this can cause synch issues in the future as the data grows outside of what the attribute can hold or longer than the column storing the data in the database.
Hope this helps