RSA Identity Governance & Lifecycle

Dan Murphy in RSA Identity Governance & Lifecycle1 week ago (Show more)

Our current process loads nearly 1 million identities every day. Lets call that the full collector. I want to change that process to Sunday (only) and add a new identity collector that collects only a subset of that data (about 200,000). The source system will handle generating the subset of data. Lets call that the delta collector My concern… (Show more)

2 repliesShow more activity

Sheshadri Lakshminarayanan (to Edwin Mullie) 22 hours ago (Show more Show less)

Hi Edwin, We also want to set up something similar to what you had mentioned in your reply. Currently, we do a full collection of identities on a daily basis and it takes considerable about of time to complete the collection and unification process. If we just go with the route of delta, would there be an issue with identities that are not part…

Actions

Steve Alexandre in RSA Identity Governance & Lifecycle1 week ago (Show more)

Create form to manual identity creation

Hello, There is a way to create a custom form to let our helpdesk create themself some identities ?

8 repliesShow more activity

Steve Alexandre (to Justin Haines) 1 day ago (Show more Show less)

Thank you for your help. We will take a look to follow the best practice and our process.

Actions

Durga Revanth T in RSA Identity Governance & Lifecycle1 day ago (Show more)

How to retrieve account name selected using user account picker in request form dynaically

HI , I am using a user account picker field in request form and i want to store the selected account in other field but its not working and let me how can we achieve this may be Form level validation ? or any other approach to store the selected account if i use java script i can able to do that in console but i have to know how it can… (Show more)

Durga Revanth T in RSA Identity Governance & Lifecycle5 days ago (Show more)

How to check and display the entitlement based on Account selection

Hi , I want to display the entitlement based on the account selection in the request form. Use Case: User has Entitlement "A" and Entitlement "A" mapped to Account "D121321", But user has multiple account for the above application ,in that case if i want to assign the entitlement "A" to another account "DERR1"of this application ,but in… (Show more)

4 repliesShow more activity

Durga Revanth T (to Durga Revanth T) 1 day ago (Show more Show less)

OK, But is there any way to get the selected account in user account table to other variable using javascript

Actions

Volodymyr Melnyk in RSA Identity Governance & Lifecycle4 days ago (Show more)

Application name attributes are absent in approval form table fields when AD group membership to be approved

Dears, We faced with an issue that there is no field(attribute) Application Name taken as attribute of AD group in approvals. As a result an approver sees only Active directory group name and user details in the table with actions. As an application name only a Datasource name of a directory is available. Of course it is possible to click on… (Show more)

3 repliesShow more activity

Volodymyr Melnyk (to Boris Lekumovich) 2 days ago (Show more Show less)

Hello Boris, Unfortunately it creates another issue. Now AFX doesnt work for this application as accounts are in directory and groups are in application business source. It is not possible to collect accounts to the application as they are already in another directory ( i tried an got an error in collector raw data). Usually we get accounts…

Actions

Paulo Paraiso in RSA Identity Governance & Lifecycle3 days ago (Show more)

Question about granting roles to new joiner

Is it possible to have IG&L to NOT grant any apps roles raised earlier until day 1 of joining of a new joiner? Even if requester requested earlier (days prior start date of new joiner)? This is so that all roles that have been requested on earlier date will apply only on the start date of the user. This is to minimize the risk of account being… (Show more)

1 replyShow more activity

Edwin Mullie

(to Paulo Paraiso) 2 days ago (Show more Show less)

So let me get the use case correct. You want to a requester to be able to request roles for users that haven't started yet. Those requests will go through approval but they will only be fulfilled once the start date of that user has passed? If that is the use case then you need to know the start date of the users from your HR source. You can…

Actions

Denise Sposato

in RSA Identity Governance & Lifecycle1 week ago (Show more)

RSA Charge 2019 'Call for Speakers' Open for Submissions

RSA CHARGE 2019 CALL FOR SPEAKERS OPEN FOR SUBMISSIONS It's official - time to get your creative juices flowing as the RSA Charge 2019 'Call for Speakers' (C4S) is now open and awaiting your submissions! As you are aware, the RSA Charge events represent all RSA products and an increasing number of customers across solutions attend this… (Show more)

Manikandan Raju in RSA Identity Governance & Lifecycle3 days ago (Show more)

User Access review is running for long time

Hi, User Access review is running for more than 10 hours, we have given all the conditions and options correctly, but it is running for long hours. Could you please suggest any idea why it is running for long?

Sandip Patel in RSA Identity Governance & Lifecycle3 days ago (Show more)

Remove 'Members' and 'Analytics' tab from Role Definition Review

We have a Fine Grained Role Definition review where we only intend to review the Entitlements within Roles. But when the Reviewer tries to review a Role, the 'General', 'Members' and 'Analytics' tab are also visible. Is there a way we can limit it to only show 'Entitlements' tab and no other tabs?

1 replyShow more activity

Mostafa Helmy

(to Sandip Patel) 3 days ago (Show more Show less)

Unfortunately they will always be there, but you can control if they are reviewable/actionable from the review definition. The reason is to give the reviewer more insight on to what the Role itself is (meta-data) and who are current members of the role to help giving an informed decision.

Actions

Shlomo Katz in RSA Identity Governance & Lifecycle4 days ago (Show more)

Workflow: Decision Node or transition variables

I want to modify a Decision node, or a transition line, to determine if an account is being removed or added from an app role. Remove will go to one email node, Add will go to another. What is the best Variable to make this condition and, based on failures, I need to ask, what is the best condition sequence? Thank you Version: 7.1 P3

1 replyShow more activity

Boris Lekumovich

(to Shlomo Katz) 4 days ago (Show more Show less)

If your workflow grouping is configured with individual changes, then you can use a decision node with the configuration below: If it's not configured with individual changes, then I guess you will need to check in the DB, what is the action for each of the change items and based on that configure the decision node

Actions

RSA Identity Governance & Lifecycle

Manage

Recent Activity