Article Number
000035352
Applies To
RSA Product Set: RSA Identity Governance and Lifecycle
RSA Version/Condition: 7.0.1
Issue
Change requests are not generated to disable accounts for users when the
Is Deleted and
Is Terminated fields are set to true in provisioning termination rule.
For example,
- Create a Provisioning Termination Rule to disable accounts.
Image description
- Pick any user who has accounts under the User > Access tab.
Image description
- Now delete that user from the system.
Image description
- Process the rule and you will see that no change requests were generated to disable the accounts.
Image description
- The User's access tab shows that all the accounts are removed from that user.
Image description
Cause
This is a known issue reported in ACM-70087 where Identity Data Collectors mark all entitlements belonging to the deleted user as deleted. This should be done through change requests and verified through collections.
Resolution
Upgrading to V7.0.1 P04 or V7.0.2 P02 will fix this issue.