000031226 - How to Disable 'Add Members' button under Role management option for Roles using RSA Via Lifecycle & Governance

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000031226
Applies ToRSA Product Set: Identity Management and Governance (IMG), Via Lifecycle & Governance (L&G)
Product Description: Business Role Manager
IssueDue to business decision or project requirement it might be required that the ability to add a user as member of the role using the role Management should not be available. In those cases, the button "add members" under the role details on the members tab should be disabled or removed to prevent it from being used.
ResolutionThere is currently no directly setting that will disable the capability for role owners to add members to the roles.
But this can be workarounded by setting deny
Users as members under the role set policy.
To change the RoleSet Policy go to Roles->Role Sets -> click on the Role Set name ->click Edit button ->next to go to the policy page
The following is a print-screen sample of the Policy page being set to Deny Users as Members:
User-added image
After making this change make sure to Apply changes to commit this modification to the role that are part of this role set.
Note that after this changes are committed roles that as part of this role set will no longer display the add members button but users using forms can still be added as members to roles using Access Request Forms.