we have a target system (oracle db) that isn't completely integrated yet. All we have is account governance. That is a Dashboard showing orphans, dormant and terminated accounts (based on the risk analytics dashboard: RSA IGL Recipes: Risk Analytics Dashboard )
Now they would like to include an automatic process of locking the account when a specific identity attribute changes. Any ideas on how to do this the best way?
Right now I'm toying with the idea of using attribute-sync for the specific attribute and create a specific workflow, but it feels a bit cumbersome.
So, any pointers will be greatly appreciated.
We're currently running 7.1.1 P04 (but will upgrade soon(ish))