000033931 - Add Entitlements table is showing inconsistent results when the roleset policy is set to "Deny entitlements not matching the entitlement rule" using RSA Identity Governance and Lifecycle 7.0.1

Document created by RSA Customer Support Employee on Sep 19, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000033931
Applies ToRSA Product Set: RSA Identity Governance and Lifecyce
RSA Version/Condition: 7.0.1
IssueNo data is displayed in the table when adding entitlements to a role when the roleset that has the roleset policy set to "Deny entitlements not matching the entitlement rule."

Steps To Reproduce


  1. Create roleset named TestRoleSet.
  2. Set the policy as '"Deny entitlements not matching the entitlement rule.
  3. Set entitlement membership rule to unifiedents."Business Unit Id"=1.
  4. Go to Roles and create a TestRole1 role.
  5. Go to the Entitlements tab and click on Add Entitlements.  
  6. It is expected that matching entitlements will be displayed, as per the entitlements rule, as shown.
User-added image


What happens is that:

  • Either no data is displayed in the table:
User-added image

 

  • Or Error - is displayed on the table when adding entitlements to a role when the roleset that has the roleset policy set to Deny entitlements not matching the entitlement rule and the rule entitlement.

Steps To Reproduce


  1. Set theTestRoleSet entitlement membership rule to unifiedents.'Business Source"='Alternate Name for Bugzilla'.
  2. Go to the Testrole1 entitlements tab and click Add Entitlements.
  3. It is expected that the entitlement table should display the data per the defined rule.  What happens is that the Count is displayed as 31 but records are displayed as Error -.
User-added image

 
ResolutionThis issue is being investigated by the Engineering team in order to provide a permanent resolution in a future release.
 

Attachments

    Outcomes