RSA^® Identity Governance & Lifecycle Discussions

PadmalochanMoh1 · ‎2021-01-22

Hi,

In RSA IGL, while configuring OAuth 2.0 authentication method for Approval email account(identityaccessapproval@xxxxx.com) what should the minimum required API permission be given to the application on Azure portal ?
The same email account is also used for reply email.

Thanks in advance !!!....

JamiePryer · ‎2021-01-25

Hey, im not sure on the answer, how does anything here help at all:

https://community.rsa.com/community/products/governance-and-lifecycle/blog/2020/09/15/new-feature-em...

IanStaines · ‎2021-01-25

Does the video on Jamies link provide the information you require?

PadmalochanMoh1 · ‎2021-01-27

Hi Jamie, Ian,
Thanks for sharing the link. However, I have checked this before and shared with client. The permissions provided in the video appear to be excessive so they need to know minimum required permissions.
Could you please help me out to get required API permissions and type ?

IanStaines · ‎2021-01-27

I don't think there is a definitive answer. The customer wants settings that they are comfortable with that meet the requirements to allow access. Excessive is by definition a subjective term.

PadmalochanMoh1 · ‎2021-01-27

Attached are the API permissions shown during demo in the video. So are these all has to be provided to the App ?

JamiePryer

Hey,

these setting will be dependand on the client and their security teams overall.

We provide the options, so that the client can apply what is best for them.

Obviously, having the higest level of security is a recommended practice in general.

RSA® Identity Governance & Lifecycle Discussions

OAuth authentication configuration for Email

RSA^® Identity Governance & Lifecycle Discussions