IdLE.Step.DisableIdentity

Generated file. Do not edit by hand. Source: tools/Generate-IdleStepReference.ps1

Summary

• Step Type: IdLE.Step.DisableIdentity
• Module: IdLE.Steps.Common
• Implementation: Invoke-IdleStepDisableIdentity
• Idempotent: Yes

Synopsis

Disables an identity in the target system.

Description

The host must supply a provider instance via Context.Providers[<ProviderAlias>] that implements DisableIdentity(identityKey) and returns an object with properties 'IdentityKey' and 'Changed'.

The step is idempotent by design: if the identity is already disabled, the provider should return Changed = $false.

Authentication:

• If With.AuthSessionName is present, the step acquires an auth session via Context.AcquireAuthSession(Name, Options) and passes it to the provider method if the provider supports an AuthSession parameter.

• With.AuthSessionOptions (optional, hashtable) is passed to the broker for session selection (e.g., @{ Role = 'Tier0' }).

• ScriptBlocks in AuthSessionOptions are rejected (security boundary).

Inputs (With.*)

The following keys are required in the step's With configuration:

Key	Required	Description
IdentityKey	Yes	Unique identifier for the identity

Example

@{
  Name = 'IdLE.Step.DisableIdentity Example'
  Type = 'IdLE.Step.DisableIdentity'
  With = @{
    IdentityKey          = 'user.name'
  }
}

See Also

• Capabilities Reference - Overview of IdLE capabilities
• Providers - Available provider implementations