000037650 - Termination rule intermittently fails to delete or disable accounts in RSA Identity Governance & Lifecycle

Document created by RSA Customer Support Employee on Jun 20, 2019
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000037650
Applies ToRSA Product Set: Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0, 7.1.1


 
IssueA termination rule that is supposed to disable or delete accounts intermittently fails to disable and/or delete accounts.
 
CauseThe accounts that are neither disabled nor deleted are either shared or service accounts. This is expected behavior and is specified in the Termination Rule itself. In the RSA Identity Governance & Lifecycle User Interface, go to Rules > Definitions > Create Rule.  then choose Provisioning - Termination from the drop-down menu of Rule Type and note the Actions as seen in the screenshot below (excludes shared and service accounts):
 
User-added image
Resolution
To make sure that a termination rule deletes an account, ensure that the account is not shared and/or is not a service account.


To make sure a termination rule disables a shared or service account, make sure the Actions shown below for Disable shared accounts and/or Disable service accounts are checked.
 
User-added image

Attachments

    Outcomes