|Applies To||RSA Product Set: RSA Identity Governance & Lifecycle|
RSA Version/Condition: 6.9.x, 7.0.x ,7.1
This is expected behavior, as no entitlement shall be granted to any user without being audited through a Change Request.
|Resolution||After importing the role(s) through Roles > Actions > Import Roles, you need to run a rule on the target system that will create Change Requests so that grant of the entitlements can be properly audited.|
The rule must have the following attributes:
Type: Role Missing Entitlements
Condition: If there are role members missing required entitlements for any roles. (Any roles can be matched to customer requirements.)
Actions: Create CR to add missing entitlements