Creating Asset Types

Asset Types are special categories of resources that are not automatically provisioned through provisioning policies, but must always be requested. Asset Types can be calls to EmpowerID dlls or other custom .NET assemblies that provision/de-provision actual resources that exist in the Resource table of the EmpowerID Identity Warehouse, like shared folders, user accounts, and Exchange mailboxes or they can be simple creations of objects (generic assets) added to the Identity Warehouse for tracking purposes only, such as a mobile phone or a company laptop.

This topic demonstrates how to create Asset Types in EmpowerID and is divided into the following activities:

To create a generic asset type

  1. From the Navigation Sidebar, navigate to the Assets management page by expanding Resources and clicking Assets.
  2. From the Assets management page, click the Actions tab and then click the Create Asset Type tile.
  3. In the New Asset Type form that appears, do the following:
    1. Type an appropriate display name, name and description for the asset type in the Display Name, Name and Description fields, respectively.
    2. Select Generic Asset from the Resource Type drop-down.
    3. Click Submit.
    4. To allow the process to continue leave Wait to See Results selected. If you deselect Wait to See Results on this screen and then click Submit, the process will idle and EmpowerID will create a task for it, routing it to any Person with the delegations to continue creating the Asset Type.

  4. From the grid of the Select Resource System screen that appears, click the Generic Asset System item to select it and then click Submit.
  5. Click OK to close the Operation Execution Summary.

To create an Asset Type for an AD User Account

As a prerequisite to creating an Asset Type for AD user accounts, you first need to connect EmpowerID to Active Directory. Doing so creates the necessary security boundary around the asset type. For step-by-step instructions, see Connecting to Active Directory.
  1. From the Navigation Sidebar, navigate to the Assets management page by expanding Resources and clicking Assets.
  2. From the Assets management page, click the Actions tab and then click the Create Asset Type tile.
  3. In the New Asset Type form that appears, do the following:
    1. Type an appropriate display name, name and description for the asset type in the Display Name, Name and Description fields, respectively.
    2. Select User Account from the Resource Type drop-down.
    3. Click Submit.
    4. To allow the process to continue leave Wait to See Results selected. If you deselect Wait to See Results on this screen and then click Submit, the process will idle and EmpowerID will create a task for it, routing it to any Person with the delegations to continue creating the Asset Type.

  4. In the Select Account Store lookup that appears, search for your Active Directory account store.
  5. From the grid, click the record returned for the account store to select it and then click Submit.
  6. In the Select a creation location lookup that appears, search for the OU in which you want the AD user accounts to be created, click the node for that location in the tree-view and then click Submit.
  7. In the Ldap Configuration form that appears, select user from the ObjectClass drop-down, type the LDAP path to the OU you selected above and then click Submit.
  8. Click OK to close the Operation Execution Summary.

To create an Asset Type for an Exchange Mailbox

As a prerequisite to creating an Asset Type for Exchange Mailboxes, you first need to connect EmpowerID to an Active Directory that has an Exchange Organization. Doing so creates the necessary security boundary around the asset type. For step-by-step instructions, see Connecting to Active Directory.
  1. From the Navigation Sidebar, navigate to the Assets management page by expanding Resources and clicking Assets.
  2. From the Assets management page, click the Actions tab and then click the Create Asset Type tile.
  3. In the New Asset Type form that appears, do the following:
    1. Type an appropriate display name, name and description for the asset type in the Display Name, Name and Description fields, respectively.
    2. Select Exchange Mailbox from the Resource Type drop-down.
    3. Click Submit.
    4. To allow the process to continue leave Wait to See Resultsselected. If you deselect Wait to See Results on this screen and then click Submit, the process will idle and EmpowerID will create a task for it, routing it to any Person with the delegations to continue creating the Asset Type.

  4. In the Select Resource System lookup that appears, click the record for the appropriate Exchange organization to select it and then click Submit.
  5. In the Asset Configuration screen that appears, do the following:
    1. Select the domain in which the user must have an account from the Depends on having account in the domain drop-down. Users must have an AD account to receive an Exchange Mailbox asset.
    2. Select the appropriate AD asset type from the Provision this asset if missing dependency drop-down. If the user does not currently have an AD account, EmpowerID will first provision an AD account from the specified asset type. Please note that you must first create an Asset Type Request for an AD user account before any values will appear in this drop-down.
    3. Click Submit.
  6. Click OK to close the Operation Execution Summary.

To create an Asset Type for a home folder

As prerequisites to creating an Asset Type for shared folders, you first need to connect EmpowerID to your Active Directory and add a resource system for a Windows Server resource type to EmpowerID. For step-by-step instructions, see Connecting to Active Directory and Adding File Servers.

In addition, you must have at least one shared folder on the server as any shared folder assets created will be placed under the selected parent folder.
  1. From the Navigation Sidebar, navigate to the Assets management page by expanding Resources and clicking Assets.
  2. From the Assets management page, click the Actions tab and then click the b>Create Asset Type tile.
  3. In the New Asset Type form that appears, do the following:
    1. Type an appropriate display name, name and description for the asset in the Display Name, Name and Description fields, respectively.
    2. Select Shared Folder from the Resource Type drop-down.
    3. Click Submit.
    4. To allow the process to continue leave Wait to See Results selected. If you deselect Wait to See Results on this screen and then click Submit, the process will idle and EmpowerID will create a task for it, routing it to any Person with the delegations to continue creating the Asset Type.

  4. From the grid of the Select Resource System screen that appears, click the Windows Server resource system item to select it and then click Submit.
  5. You must add a resource system for the Windows Server to EmpowerID before it will appear in the grid.

  6. In the Asset Configuration form that appears, do the following:
    1. Click Create as Share and then click Create as Share again if the folder is a shared folder.
    2. Select Hide Share if the folder is a shared folder that you want to hide on the File server.
    3. Select the drive letter for the Shared folder from the Map to Drive drop-down. EmpowerID writes this value to the user's AD account.
    4. Select the AD account store in which the shared folders are to be created from the Depends on having account in the domain drop-down.
    5. Select the prerequisite AD asset type from the Provision this asset if missing dependency drop-down. As users must have an AD user account before they can have a home folder, EmpowerID will provision the appropriate user account if the user does not yet have one.
  7. In the Shared Folder lookup that appears, search for the parent shared folder under which the shared folder assets are to be created, click that folder in the grid to select it, and then click Submit.
  8. Click OK to close the Operation Execution Summary.