Article Content
Article Number | 000034329 |
Applies To | RSA Product Set: RSA Identity Governance and Lifecycle (G&L) RSA Version/Condition: 7.0 |
Issue | A user has access to a group entitlement and a global role is created including that group entitlement, app-role and entitlements. While generating the user access review including the user and the global role, the review item includes both the group entitlement and the global role. This behavior is expected only when the "Include group memberships that are entitlements of their assigned global roles" option is checked in the Contents tab of the review definition. However, if this option is checked, the review item should show a separate activity for the group entitlement but this is working in the opposite way. Instead of including the group entitlement it excludes the group entitlement in the review item. As an example,
|
Cause | The UI option to include or exclude indirect groups is working backwards. |
Resolution | Upgrading to Version 7.0.1 will fix this issue. |