on Nov 4, 2019Hi All,
I'm working with a customer that has the following Review requirements:
- Access (group, app-role, ent) within application/directory classified as 'superuser' to be reviewed by Business Owner
- Access (group, app-role, ent) within application/directory classified as 'privileged' to be reviewed by Technical Owner
In addition to the above, the reviewer must have the ability to maintain/revoke at an account level and as a result I'm forced to use the Account Access and Ownership review type.
Looking at the Coverage Files help section in IG&L, it looks like the structure of coverage files within Account reviews is limited in comparison to User Access reviews.
Is it possible to add additional filtering to the account coverage file to include the access, for example:
user id='morric'|account name ='ryderk' and group name = 'example'
Thanks,
Clive
I don't think that is possible based on the help page and examples. Seems the coverage file is a bit limited for account reviews.