Article Content
Article Number | 000033849 |
Applies To | RSA Product Set: RSA Identity Governance & Lifecycle RSA Version/Condition: 7.0.x, 7.1.x, 7.2.x |
Issue | There appears to be more than one copy of an entitlement for a user. When the multiple entitlements are examined closely, the resource name has a different combination of upper and lower case characters in each entitlement instance. |
Cause | Resource names in entitlements are case sensitive. Therefore the same combination of upper and lower case characters must be in the resource name every time the entitlement is collected.For existing entitlementsEvery time there is a collection that has a different upper/lower case spelling for the resource, it will be viewed by RSA Identity Governance & Lifecycle as a different resource and so a new entitlement will be created, effectively creating a duplicate. If an entitlement is meant to be deletedIf the resource name's case does not match what it was when the resource was added, it will not be deleted. For example, the following fully qualified resource names were found in a sequence of entitlement collections for a particular user, and entitlements were created or deleted as shown.
If you look carefully at the above sequence of upper/lower case entitlements, you can see that after 27-June-16 there should be one entitlement left for this resource for the user, which is the one that was created on 4-May-16 for Resource_Name. |
Resolution | Configure all entitlement data collection sources to ensure that every time an entitlement is collected, the upper/lower case spelling of the entire fully qualified resource name is always the same. |