Continuous Import Retrial for Identity Governance
During Continuous Update, there may be some failures on while updating the model and master configurations.
cg143
During Continuous Update, there may be some failures on
Identity Governance
while updating the model and master configurations. Live Notifications feature identifies failures during Continuous Update and allows you to configure retrial operations for the failures.
Follow the given steps to set retrial operations for the failed scenarios:
- Log in to CA Identity Governance Portal
- Navigate toAdministration,Settings,Property Settings.
- In theProperty Settingspage, navigate to the end of the page and clickAdd.
- Add the following properties:
- livenotification.retrial.count- Refers to the maximum number of retrials in case of failure. Default value is set to3(Property Value).
- livenotification.retrial.sleep- Refers to the maximum sleep time (in seconds) between retrials. Default value is set to30seconds (Property Value).
- In theEdit Propertyscreen, enter the maximum number of retrials and maximum sleep time in theProperty Valuefield, respectively.
- ClickSave.Adding these properties will ensure the retrials are executed for a failed task.
Email Notifications:
If the failure persists after reaching maximum number of retrials, an email is sent to the
Identity Governance
administrator along with Transaction Log entries for the corresponding failed CA Identity Manager requests.Mail recipients can be configured by setting the following configuration properties:
Follow these steps:
- Login to CA Identity Governance Portal.
- Navigate to Administration, Settings, Property Settings.
- On the Property Settings page, navigate to the end of the page and click Add
- Add the following properties:
- livenotifications.failure.email.to
- livenotifications.failure.email.cc
- On the Edit Property screen, provide the email addresses separated by a semicolon in the Property Value field respectively.
- Click Save.
Note:
Email addresses for livenotifications.failure.email.to
property is mandatory. However, livenotifications.failure.email.cc, is optional. Once the email recipients are configured, the transaction log entries are sent to the registered email addresses.
An example of the transaction log sent to the administrator:
DB Column | Field Value | Description/Examples |
ID | Sequence number generated automatically | |
SOURCE | static value 'Live Notifications consumer' | |
OWNER | static value 'Live Notification TX Log' | |
ENTRYDATE | System date | Current sysdate at the time of transaction |
sdata1 | EVENT ID | 17f3443b-0a42b05e-1a1fec1b-b6079e62 |
sdata2 | EVENT NAME | ADD_USER, ADD USER PROVISIONING ROLE |
sdata3 | IG Configuration Universe | TGTUniverse |
sdata4 | User object | <UserObjectName> |
sdata5 | Entity Object | Lenel_Access_Control_Badge |
sdata6 | Static value FAILURE | |
sdata7 | static value RESUBMIT |
Define an Email Server
To configure an Email Server, see Define an Email Server.
Create an Email Template
To configure an Email Template for Live Notifications during Continuous Update, see Configure Email Notifications.
Navigate to Administration, Settings, Email, Events, and enable the mail event
onContinuousUpdateFailure
to send emails.If you want to create a default template, use the following content:
Template subject:CA Identity Governance Continuous Updates: ${noOfRequestsFailed} Live notifications failed.Template body:Dear ${universeName} Admin, An error occurred while processing the live notifications from CA Identity Manager and ${noOfRequestsFailed} requests failed. Please refer to the Transaction logs for more details. List of failed requests: ${failedRequests} Thanks, CA Identity Governance Admin