Hi, we use the Google Apps driver and we have an issue with renames. We
are a school district with over 5000 staff members and each member has a
google account created with IDM. They also have a district email
account. We use groupwise. We create user's google accounts with IDM,
with the user name being their district groupwise email account and not
their novell user account name. We want them to use their groupwise
account for email.We don't enable email in google for them, just drive
and other google apps. Anyway, that is where our problem comes in. When
the novell user account gets renamed, by default IDM only tries to
rename the user account name in google and not the email account name.
How do I get the google email account renamed? Here is a copy of our
user creation policy so you can see how they are created:

<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE policy PUBLIC
"policy-builder-dtd" "C:\Program Files
(x86)\Novell\Designer\plugins\com.novell.idm.polic ybuilder_4.0.0.201206110753\DTD\dirxmlscript4.0.2. dtd"><policy
xmlns:es="http://www.novell.com/nxsl/ecmascript">
<rule>
<description>Break if not a User</description>
<conditions>
<or>
<if-class-name mode="nocase" op="not-equal">User</if-class-name>
</or>
</conditions>
<actions>
<do-break/>
</actions>
</rule>
<rule>
<description>Break if Staff Account without email
address</description>
<conditions>
<and>
<if-attr mode="nocase" name="gidNumber" op="equal">2000</if-attr>
<if-attr name="Internet EMail Address" op="not-available"/>
</and>
</conditions>
<actions>
<do-break/>
</actions>
</rule>
<rule>
<description>Sanitize Username</description>
<comment xml:space="preserve">This rule cleans usernames of invalid
characters or blocks the user from being created, depending on the GCV
gcv.NOVLGGLEUSER.UsernameSanitizeMethod value.</comment>
<conditions>
<and/>
</conditions>
<actions>
<do-set-local-variable name="lv-username" scope="policy">
<arg-string>
<token-src-name/>
</arg-string>
</do-set-local-variable>
<do-if>
<arg-conditions>
<or>
<if-local-variable mode="regex" name="lv-username"
op="equal">.*\.{2,}.*</if-local-variable>
<if-local-variable mode="regex" name="lv-username"
op="equal">.*[^a-zA-Z0-9\-\_\'\.].*</if-local-variable>
</or>
</arg-conditions>
<arg-actions>
<do-if>
<arg-conditions>
<and>
<if-global-variable mode="nocase"
name="gcv.NOVLGGLEUSER.UsernameSanitizeMethod"
op="equal">strip</if-global-variable>
</and>
</arg-conditions>
<arg-actions>
<do-set-local-variable name="lv-username" scope="policy">
<arg-string>
<token-replace-all regex="[^a-zA-Z0-9\-\_\'\.]"
replace-with="">
<token-replace-all regex="\.{2,}" replace-with=".">
<token-local-variable name="lv-username"/>
</token-replace-all>
</token-replace-all>
</arg-string>
</do-set-local-variable>
</arg-actions>
<arg-actions>
<do-trace-message>
<arg-string>
<token-text xml:space="preserve">Username has invalid
characters. Vetoing event.</token-text>
</arg-string>
</do-trace-message>
<do-veto/>
</arg-actions>
</do-if>
</arg-actions>
<arg-actions/>
</do-if>
</actions>
</rule>
<rule>
<rule>
<description>User Create Rule - Primary Domain - Staff</description>
<conditions>
<or>
<if-class-name mode="nocase" op="equal">User</if-class-name>
</or>
<or>
<if-attr mode="nocase" name="gidNumber" op="equal">2000</if-attr>
</or>
<or>
<if-attr mode="nocase" name="Login Disabled"
op="not-equal">true</if-attr>
</or>
<or>
<if-src-dn op="in-subtree">DVUSD\AH\Users</if-src-dn>
<if-src-dn op="in-subtree">DVUSD\AN\Users</if-src-dn>
<if-src-dn
op="in-subtree">DVUSD\SH\Users</if-src-dn>
</or>
</conditions>
<actions>
<do-veto-if-op-attr-not-available name="Surname"/>
<do-veto-if-op-attr-not-available name="Given Name"/>
<do-veto-if-op-attr-not-available name="nspmDistributionPassword"/>
<do-set-default-attr-value name="CN" write-back="false">
<arg-value type="string">
<token-attr name="Internet EMail Address"/>
</arg-value>
</do-set-default-attr-value>
</actions>
</rule>
<rule>

Hope someone can help.

Thanks


--
fnutter
------------------------------------------------------------------------
fnutter's Profile: https://forums.netiq.com/member.php?userid=5054
View this thread: https://forums.netiq.com/showthread.php?t=54277