We were working on a migration plan to migrate the users from an old system to new system During that we came across IDM_IdentityPolicy attribute in user store(CA Directory) which stores value like PX.RULE.wiam-imb;76;87,.We wanted to understand what is this value used for and what is being referred to by those numbers.
We would also like to understand if the value for this attribute is crucial for migration and how to proceed with it.
Any help or pointers towards the right direction is greatly appreciated.
PX policies can be configured to only run once for any given user object. The data that you're seeing in that user data is that PX policy with an internal id of wiam-imb;76;87 has been executed against this user already, so there is no need to apply this policy again if asked.
What does the number in the value specifies and Is this attribute necessary to Migrate the values if we are migrating users from one environment to another?
When the PX Policies are created there are records inserted into various tables in the objectstore. The tables have a UNIQUE_NAME column which increments for each newly added record and the numerics you see in the %IDENTITY_POLICY% well-known attribute value refers back to these records. You would need to preserve the existing database records as they are so that these numerical references in the %IDENTITY_POLICY% well-known attribute value still matches the correct PX Policy. If you were importing fresh then the tables would be repopulated with different numerical references which would cause data integrity problems with the %IDENTITY_POLICY% well-known attribute value on the users.