|Applies To||RSA Product Set: RSA Identity Governance & Lifecycle|
RSA Version/Condition: 6.9.1, 7.0.2, 7.1
|Issue||A rule is created where the Condition for Are the only ones with access to any of contains an IN clause that was entered manually using the Advanced mode. For example, approles.name in ('Access Request Administrator','Application Administrator')|
However, when the condition is re-edited, there is no IN clause and in Advanced mode, the Where Clause textbox is empty.
This results in the IN clause needing to be re-entered.
|Cause||This is a product defect reported under engineering ticket ACM-84791.|
|Resolution||As of March 2018, there is no resolution to this issue. Please see the workaround below.|
|Workaround||There are two workarounds, one using Advanced Mode and one using Simple Mode.|
Manually enter the IN clause as a set of OR statements instead. For example, change:
approles.name in ('Access Request Administrator','Application Administrator')
approles.name = 'Access Request Administrator' OR approles.name = 'Application Administrator'
Please note that there is a maximum limit of 4000 characters.
Alternately, do not use Advanced Mode, use Simple Mode.