Article Number | 000037490 |
Applies To | RSA Product Set: Identity Governance & Lifecycle RSA Version/Condition: 7.0.2 P11, 7.1.0 P04 |
Issue | Pending accounts which are created automatically when a request contains a Create Account change item are not deleted from the system when the change request is cancelled.
For example,
- Create a Directory/Application and collect any entitlements into it.
- Create a very basic Account Template with one pending account parameter: Name set to ${User.User_ID}.
- Link the account template to the Directory/Application and set Entitlements require accounts to Yes.
- Create a change request for any user to add any entitlement from this directory.
Notice this change request contains a dependent change item for Create Account with the user's User_ID as the account name.
- Cancel this change request.
- The account will not be seen on the user's access tab since the user-account mapping gets removed. However, if you check the Directory/Application and go to the Accounts tab you will see this account still exists.
|
Cause | This is a known defect reported in ACM-96141 and ACM-94080. |
Resolution | This issue is resolved in the following RSA Identity Governance & Lifecycle patches:
- RSA Identity Governance & Lifecycle 7.0.2 P12
- RSA Identity Governance & Lifecycle 7.1.0 P05
|