Duplicate users in RSA Identity Governance & Lifecycle

RSA Product Set: Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0

 

Duplicate identities are showing in RSA Identity Governance & Lifecycle.

The most common causes of this problem are:

• A misconfiguration of the identity data collector definition and/or the unification configuration.
• Unexpected data in the data source from which data is being collected.

 

There are two possible resolutions to this issue:

1. Restore from a backup

1. Restore to the latest backup prior to the issue.
2. Fix the misconfiguration and/or source data. Fix the collector definition if incorrect or remove/cleanup the data (users/identities, accounts, and entitlements) in the data source. 
3. Run collections/unification again.

2. Terminate/delete the duplicate users (terminated users remain in the user interface)

1. Fix the misconfiguration and/or source data. Fix the collector definition if incorrect or remove/cleanup the data (users/identities, accounts, and entitlements) in the data source. 
2. Run collections/unification again. This will flag all the duplicate records as terminated/deleted and functionally achieve what is required by marking only one identity as active.

As per RSA Identity Governance & Lifecycle  Engineering, Engineering does not recommend deleting the duplicate identities as deleting the identities might lead to data inconsistency, data corruption, and missing references. It might also impact audit and compliance which would defeat the purpose of the product. Hence, Engineering does not provide a script to purge or hard-delete users/identities, accounts, and/or entitlements.
 

Please see related article 000036824 - Duplicate identities after upgrading from RSA Identity Management & Governance 6.9.1 to RSA Identity Governance & Lifecycle 7.0.