000030307 - Are there any setbacks for having active members in disabled roles in IMG/Aveksa?

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000030307
Applies ToRSA Product Set: Identity Management and Governance (IMG), Aveksa
ResolutionThere should not be any setbacks from having an active user as a member of a disabled role.  Any access granted via the role is indirect and will not be revoked by setting the role to inactive.
Also, the access cannot be revoked through reviews and whatnot, since the access is indirect.  You should be able to revoke this access via a regular change request, unless the option is unavailable due to it being indirect.  This would not affect any change requests that have already been generated.