Hello,
We need to add a person to a group representing their post. I have two view tables, one for users and one for posts. The user has a postid attribute and the post has an immutableid. I'm flowing the post into the MV and using an inbound sync rule to create a security group in the FIM Service. Workflow (FIMWAL update) fires on completion of the 'create' request. This will run a query to find the user that has the same postid as the post group immutableid which is the stored in the query key. The query result is then flowed to the 'ExplicitMember' attribute of the group. This works fine on create but not on a modify driven activity, that is when the users' postid changes.
The objective is to remove the user from the post group when their postid no longer matches the immutableid of the group because the user has changed post.
In the example above i used a manually-managed group as we couldn't find a way to write the value expression into the Filter attribute using the workflow thus enabling us to use a dynamic group which would be the nirvana in this instance.
However, is there another way of removing the user programmatically from the group when there is a change to the postid. I have the MPR configured so that it will call a workflow when this attribute is modified on the user, i'm just stuck on what to run in the workflow. Can Powershell be used in this example to work out what the post group is that the user is in before the postid was changed and then remove the user from that group?? Or is there a way of auto creating a dynamic group by being able to specify the correct xml to feed to [//Target/Filter]??
Rob