RSA Identity Governance and Lifecycle Provisioning -Termination rule is not generating change requests to revoke entitlements
2 years ago
Originally Published: 2017-07-10
Article Number
000063676
Applies To
RSA Product Set: RSA Identity Governance and Lifecycle
RSA Version/Condition: 7.0.1
 
Issue
The Provisioning - Termination rule is not generating change requests to revoke entitlements when both Is Deleted and Is Terminated are set to true in RSA Identity Governance and Lifecycle.

For example, 
  1. Create a Provisioning Termination rule to revoke entitlements.
User-added image
  1. Pick any user who has entitlements under the User > Access tab.
User-added image
  1. Delete the user from the system.
User-added image
  1. Process the Provisioning Termination rule and we can see there are no change requests created for that user.
User-added image
  1. Check the access of the user under the User - Access tab and we can see the entitlements are removed from the user.
User-added image

 
Cause
This is a known issue reported in ACM-70087 where Identity Data Collectors mark all entitlements belonging to the deleted user as deleted.
Resolution
Upgrading to V7.0.1 P04 or V7.0.2 P02 will fix this issue.
 

Related Articles

Trending Articles

Don't see what you're looking for?