Delete an identifier association

To delete an identifier association, you must be connected to the Enterprise Identity Mapping (EIM) domain in which you want to work and you must have the EIM access control required by the type of association that you want to delete.

To delete a source or an administrative association, you must have EIM access control at one of these levels:

Identifier administrator.
EIM administrator.

To delete a target association, you must have EIM access control at one of these levels:

Registry administrator.
Administrator for selected registries (for the registry definition that refers to the user registry that contains the target user identity).
EIM administrator.

To delete an identifier association, complete the following steps.

Expand Network > Enterprise Identity Mapping > Domain Management.
Select the EIM domain in which you want to work.
- If the EIM domain you want to work with is not listed under Domain Management, see Add an EIM domain to the Domain Management folder.
- If you are not currently connected to the EIM domain in which you want to work, see Connect to the EIM domain controller.
Expand the EIM domain to which you are connected.
Click Identifiers to display the list of EIM identifiers for the domain.
Note: Sometimes when you attempt to expand the Identifiers folder, it may take a long time before the list of identifiers displays. To improve performance when you have a large number of EIM identifiers in the domain, you can customize the Identifiers folder view by restricting the search criteria used for displaying identifiers. Right-click Identifiers, select Customize this view... > Include, and specify the display criteria to use for generating the list of EIM identifiers to include in the view.
Select an EIM identifier, right-click the EIM identifier, and select Properties.
Select the Associations page to display a list of associated user identities for the selected EIM identifier.
Select the association that you want to delete and click Remove to delete the association.
Note: There is no confirmation prompt when you click Remove.
Click OK to save your changes.

Note: When you remove a target association, any mapping lookup operations to the target registry that rely on the use of the deleted association may fail if other associations (either policy associations or identifier associations) do not exist for the affected target registry.

The only way to define a user identity to EIM is when you specify the user identity as part of creating an association, either an identifier association or a policy association. Consequently, when you delete the last target association for a user identity (whether by removing an individual target association or by removing a policy association), that user identity is no longer defined in EIM. Consequently, the user identity name and any lookup information for that user identity is lost.