SecurID® Governance & Lifecycle Knowledge Base
Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID Governance & Lifecycle experts.
Article Number
000036093
Applies To
RSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 6.9.1, 7.0.2, 7.1
RSA Version/Condition: 6.9.1, 7.0.2, 7.1
Issue
A rule is created where the Condition for Are the only ones with access to any of contains an IN clause that was entered manually using the Advanced mode. For example, approles.name in ('Access Request Administrator','Application Administrator')
Image description
However, when the condition is re-edited, there is no IN clause and in Advanced mode, the Where Clause textbox is empty.
Image description
Image description
This results in the IN clause needing to be re-entered.
Image descriptionHowever, when the condition is re-edited, there is no IN clause and in Advanced mode, the Where Clause textbox is empty.
Image descriptionImage descriptionThis results in the IN clause needing to be re-entered.
Cause
This is a product defect reported under engineering ticket ACM-84791.
Resolution
As of March 2018, there is no resolution to this issue. Please see the workaround below.
Workaround
There are two workarounds, one using Advanced Mode and one using Simple Mode.
approles.name in ('Access Request Administrator','Application Administrator')
to:
approles.name = 'Access Request Administrator' OR approles.name = 'Application Administrator'
Image description
Image description
Advanced Mode
Manually enter the IN clause as a set of OR statements instead. For example, change:approles.name in ('Access Request Administrator','Application Administrator')
to:
approles.name = 'Access Request Administrator' OR approles.name = 'Application Administrator'
Please note that there is a maximum limit of 4000 characters.
Simple Mode
Alternately, do not use Advanced Mode, use Simple Mode.- Click on the object to be included:
Image description- Select the object values from the picklist and click OK.
Image descriptionIn this article
