Create Email Notification Policies
Use the User Console to create an email notification policy. The email notification policy sends an email to the configured recipients when certain actions are triggered in the
Identity Managerenvironment. For example, you can create an email notification policy to notify an approver when a user is created.
Follow these steps:
- Log in to theIdentity ManagerUser Console.
- Navigate toSystem,Create Email.
- Useoneof the following options:
- SelectCreate a new object of type Managed E-mailto create an email notification policy as a new email object.
- SelectCreate a copy of an object of type Managed E-mail, to create an email notification policy with an existing email object as a template. Next, search, and select an existing template for email policy creation.
- Configure the following tabs:
- Profile:Specifies the profile of an email notification policy that you are creating.For more details, see Profile Tab.
- Sender:Specifies the email address of a user who sends an email notification to a recipient.For more details, see Sender Tab.
- When to Send:Specifies the event to trigger an email notification.For more details, see When to Send Tab.
- Recipients:Specifies recipients that receive an email notification.For more details, see Recipients Tab.
- Content:Specifies the subject and content of an email.For more details, see Email Content.
Configure the following fields in the
Profiletab to define the profile of an email notification policy:
- Email NameSpecifies the name of an email notification policy. The email name is not displayed in an email sent to the recipient. The email name is used to manage the email notification policy in the User Console only.
- CategoryGroups email notification policies to simplify management. You can select any existing category from the drop-down list or can enter a new category.
- DescriptionSpecifies a text that describes an email notification policy. The description is not displayed in an email sent to the recipient.
- EnabledWhen enabled, an email is sent to the recipient only when the conditions defined in the When to Send tab are met.
- Entry RulesLets you define granular-level rules to send email notifications in cases where the default rules defined in the When to Send tab are not granular enough.Example:In theWhen to Sendtab, you define a rule that sends an email when any attribute of a user profile is modified. If you want to send an email only when the user department changes, then you must create a custom entry rule. In this case, you create a custom data element that identifies when the department changes and then create an entry rule that uses the custom data element that you created.Note: For more details, see Entry Rules.
By default, an email notification is sent to a recipient from the administrator email address. The administrator email address is configured in the Management Console or the email.properties file. To send an email notification from a different sender email address, do the following configurations in the
- By default, theAdmin Email Addressoption is selected. When this option is selected, it means that an email notification is sent to a recipient from the administrator email address. To configure a different sender email address, perform the following actions:
- De-selectAdmin Email Address.
- ClickSender Email Addressto select a different sender email address.
- Search and select a user to send an email notification from its configured email address.
When to Send Tab
When to Sendtab, you can configure events that determine when an email notification must be sent to a recipient. By default,
Identity Managercomes with several event types. You can select one or more of the following events at which an email triggers. For few events, in addition to the event type, you must select an event name. For example, to send an email when an endpoint creation task fails, you must select the Event Type as "Task Failed" and the Event Name as "Create Endpoint (CreateEndpoint)".
- User CreatedSends an email when a user is created. The email is sent when the CreateUserEvent reaches completion.
- User ModifiedSends an email when a user is modified. The email is sent when the ModifyUserEvent reaches completion.
- Event StartedSends an email before an event gets executed. When you select this option, specify the event name.Note:If you specify Event Started, and the email fails to send notification, then the event that is associated with the notification will not execute.
- Event EndedSends an email after an event is executed. When you select this option, specify the event name.
- Workflow PendingSends an email when a workflow process assigns an approver. When you select this option, specify the applicable workflow process. Email that is defined with this policy sends individual email to approvers at every step of the selected workflow process.
- Workflow Pending EmailSends an email when a workflow process reaches a specified activity. When you select this option, specify the applicable workflow process. Email that is defined with this policy sends individual email notification for each approval step.
- Event ApprovedSends an email when an event reaches the Approved state. When you select this option, specify the event name.
- Event RejectedSends an email when an event reaches the Rejected state. When you select this option, specify the event name.
- Event FailedSends an email when an event fails. When you select this option, specify the event name.
- Task SubmittedSends an email when a task starts processing. When you select this option, specify the task or the event name.
- Task FailedSends an email if a task fails. When you select this option, specify the task or the event name.
- Task CompletesSends an email when a task completes. When you select this option, specify the name of the task or the event name.
You can add recipients for the To, CC, or BCC fields of an email from the
RecipientsTab. To add a recipient, do the following configurations in the
- Click theEditicon to add a recipient for the To, CC, or BCC fields respectively.
- Select one of the following recipient categories from the drop-down list:
- InitiatorSends email to the person who initiated the request.
- UserSends email to the user on whom a task is performed.
- ManagerSends email to the manager of the user on whom a task is performed.
- To use the Manager recipient option, configure the manager attribute for the environment. To configure the manager attribute, navigate toEnvironments,EnvironmentName,Advanced Settings,Miscellaneousin the Management Console. Setmanagerattributeto the name of the physical attribute that stores the unique name of a user manager.
- For relational databases, specify the attribute using the following format:tablename.attribute.
- StaticSends email to a selected email address. You can specify the email address in the additional text area available. Do not specify more than one address in the text area.
- Role MemberSends email to all members of an admin role. Select a role from the drop-down list.
- Group MemberSends email to all members of a group. Select a group from the drop-down list.
- Workflow ApproversSends email to all approvers in the workflow process. This option is only applicable if the email is sent for a workflow pending event.
You can define the subject and body of an email using simple text, or can add dynamic content that is calculated when an email is sent.
The subject line is a plain text field where you can write your message. This message is the subject of the email.
The body is displayed in an HTML editor. You can insert and format any text to form the email body.
To add dynamic content to the subject line, use the drop-down list below the subject line. And, to add dynamic content in the email body, use the drop-down list below the content box. The editor adds dynamic content indicators, which resemble the following, where the cursor is located:
typerepresents one of the supported dynamic content types.
For example, when you select the Attribute dynamic content type and specify the FirstName attribute, the HTML editor displays the following in the Content tab:
When the email message is sent, the dynamic content is replaced with the appropriate text. The text retains the formatting, such as bold characters, which are specified in the HTML editor.
Dynamic content types include the following:
- DateSpecifies current date in the format you specify.
- TaskSpecifies the task for which an email is sent.
- Object NameSpecifies the name of the object in the event that triggers the email. If the event is a user event, this field is the user login name.The object can be something other than a user. For example, it can be any managed object such as a group, admin role.
- AttributeSpecifies the value of one of the user attributes. The user is the subject of the task. This option requires selecting the attribute from a drop-down list.
- Manager AttributeSpecifies the value of one of the attributes of the user manager. The user is the subject of the task. This option requires selecting the attribute from a drop-down list.
- Environments,EnvironmentName,Advanced Settings,Miscellaneousin the Management Console. Setmanagerattributeto the name of the physical attribute that stores the unique name of a user manager.
- For relational databases, specify the attribute using the following format:tablename.attribute