The AttestationCase table expands very quickly when attestation is performed regularly. To limit the number of attestation cases in the One Identity Manager database, you can delete obsolete, closed attestation cases from the database. The attestation case properties are logged and then the attestation cases are deleted. The same number of attestation cases remain in the database as are specified in the attestation policy. For more information about logging data changes tags, see the One Identity Manager Configuration Guide.
Prerequisites
-
The Common | ProcessState | PropertyLog configuration parameter is enabled.
-
The attestation policy is enabled.
To delete attestation cases automatically
-
Set the Log changes when deleting option on at least three columns in the AttestationCase table.
-
In the Designer, select the Database schema > Tables > AttestationCase category.
-
Select the Show table definition task.
This opens the Schema Editor.
-
Select a column in the Schema Editor.
-
In the edit view of the schema editor, select the More tab.
-
Set the option Log changes when deleting.
-
Repeat steps (c) to (e) for all columns that are to be recorded on deletion. There must be at least three.
-
Click on Commit to database and save the changes.
The changes take effect as soon as the DBQueue Processor has performed the calculation tasks.
-
-
Set the Log changes when deleting option on at least three columns in the AttestationHistory table.
-
In the Designer, select the Database schema > Tables > AttestationHistory category.
-
Repeat the steps 1(b) to 1(h) for the AttestationHistory table.
-
-
Enter the number of obsolete cases in the attestation policies.
-
In the Manager, select the Attestation > Attestation policies category.
-
Select the attestation policy in the result list whose attestation cases should be deleted.
-
Select the Change main data task.
-
In the Obsolete tasks limit field, enter a value greater than 0.
- Save the changes.
-
Attestation cases are deleted as soon as a new attestation is started for an attestation policy.
One Identity Manager tests how many closed attestation cases exist in the database for each attestation object of this attestation policy. If the number is more than the number of obsolete attestation cases:
-
The attestation case properties and their approval sequence are recorded.
All columns are recorded, which are marked for logging on deletion.
-
The attestation cases are deleted.
The same number of attestation cases remain in the database as are specified in the obsolete tasks limit.
If the Common | ProcessState | PropertyLog configuration parameter is disabled later or not enough columns are marked with the Record on delete option, the value for Number of obsolete processes has no effect.
Notes for disabling attestation policies
-
Disabling an attestation policy always deletes all attestation cases.
-
The number of obsolete cases is not taken into account.
-
The attestation case are also deleted if the Common | ProcessState | PropertyLog configuration parameter is disabled. In this case, the deleted attestation cases are not logged.