PingDirectory

Configuring soft deletes by request criteria

Soft deletes can be configured using request criteria within a client connection policy. All delete requests that meet the request criteria are treated as a soft delete.

The presence of a soft delete by connection criteria is exclusive of the soft delete by request criteria.

Both a soft delete by connection criteria and a soft delete by request criteria can be present in a soft delete policy.

Enabling soft deletes by request criteria

Before you beginConfigure a soft-delete policy and global configuration.

Steps

  1. To configure request criteria for soft deletes, use the create-request-criteria option with dsconfig.

    Example:

    In this example, the soft delete request criteria is configured for an external delete request from a member of the internal applications group matching an entry with object class inetorgperson with the request excluding the Soft Delete Request Control and the Hard Delete Request Control.

    $ bin/dsconfig create-request-criteria \
      --criteria-name "Soft Deletes" \
      --type simple \
      --set "description:Requests for soft delete" \
      --set operation-type:delete \
      --set operation-origin:external-request \
      --set "connection-criteria:Internal Applications" \
      --set not-all-included-request-control:1.3.6.1.4.1.30221.2.5.20 \
      --set "all-included-target-entry-filter:(objectClass=inetorgperson)"
  2. In the soft delete policy you previously created, set the auto-soft-delete-connection-criteria property to the simple criteria created in the previous step.

    Example:

    $ bin/dsconfig create-soft-delete-policy \
      --policy-name default-soft-delete-policy \
      --set "auto-soft-delete-request-criteria:Soft Deletes"

Disabling soft deletes by request criteria

Steps

  • To disable soft deletes by request criteria, reset the soft delete policy.

    Example:

    $ bin/dsconfig set-soft-delete-policy-prop \
      --policy-name default-soft-delete-policy \
      --reset auto-soft-delete-request-criteria