For Targeted or Manager Access Certification Can we stop Revocation for Connected Application in identityIQ
Is there Any Configuration can Change in Access Certification stop for Auto Revocation Provisioning for Connected Application
Hey Sri,
You can use a certification exclusion rule to remove specific entitlements from the certification all together:
Do you want the entitlements still in the certification just not revoked if they’re denied? If so, what did you want to happen to them?
You could also use a before provisioning rule: Exclude specific entitlements from auto revocation to check if the provisioning plan is coming from a certification and if the entitlement is in your “do not revoke” list. If so, remove it from the plan so it is not deprovisioned, even if the reviewer selected “Revoke.”
Thank you But We want work on Different Applications Can we do bulk
I’m not sure I understand. You want to exclude entitlements from multiple different applications?
Wouldn’t an exclusion rule still solve that? You’ll need to configure anything on a per-application basis as the entitlements will be different
So I created Targeted Access Certification For Different Application and Users Once Certifier take (Revoke) action on Certification Items
is it possible to stop that Revoked Access Provisioning in Certification it self or Do i need to update every Application Before Provisioning rule
I don’t see any option other than before provisioning rule , you can add the source attribute condition to skip any provisioning action.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.