Unable to remove deleted groups from role in RSA Governance & Lifecycle
Article Number
Applies To
RSA Version/Condition:
- RSA Governance & Lifecycle 7.5.0
- SecurID Governance & Lifecycle 7.5.2
Issue
Cause
Resolution
- SecurID Governance & Lifecycle 7.5.2 P08
- RSA Governance & Lifecycle 8.0
Workaround
Notes
To check if there are any deleted groups that are still in a role, run the following SQL query that will detect all the invalid group entries in roles
select r.id role_id,r.name role_raw_name, r.alt_name role_name, g.id group_id,g.name group_name,rd.creation_date grp_added_to_role_on,g.deletion_date group_deletion_date from t_av_roles r inner join t_av_roledefinitions rd on r.id = rd.role_id inner join t_groups g on rd.ent_id = g.id where rd.ent_type = 'group'and rd.deletion_date is null and exists (select 1 from t_groups g where g.id = rd.ent_id and g.deletion_date is not null);
Related Articles
Unable to remove a Role Membership Rule from a Role in RSA Identity Governance & Lifecycle Number of Views Indirect Change items not generated for removing group from Technical Role Number of Views Role import does not include Available For Request set to No Number of Views When removing a user from a large number of Roles, the Change Request creation fails with an 'ORA-01704: string literal to… Number of Views Unable to remove account from group through a review in RSA Identity Governance & Lifecycle Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Downloading RSA Authentication Manager license files or RSA Software token seed records Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Authentication Manager – Unable to Add or Manage Users with Error “The specified ID is already in use” OIDC: How to integrate applications with the RSA Cloud Authentication Service
Don't see what you're looking for?
