Hi,

We have a central Active Directory..

The AD team have been kind enough to allow us to install Remote Loaders
for our IDM Vault.. (IDM 3.6.1)

Now if a password change comes from AD and the account is not
associated, the operation is vetoed, it does not make it to the matching
policy.

If however the operation is any like a modify then the operation gets to
the matching rule and a match is either found or not..

Obviously once the match has been made the association is then created.

Is there an easy way to allow an unassociated object to find a matching
object and then associate itself so the password can be changed?

Have I missed something simple here? (Sorry I haven't done much with
IDM for a while as the other drivers just sit here and run :-)

Cheers