Hello, I wanted to know if you could help me with this access control issue. The client needs to see all the accesses that a person has that are not included in their assigned role. That is, if an identity has “ROLE 1,” which contains permissions 1, 2, and 3, but the identity also has permission number 4, which is not included in any roles, I need to generate a report or something that provides this information.
I tried using certification campaigns, but it is very complex because the client does not know exactly which extra permissions need to be reviewed. Instead, they want to see absolutely all permissions that do not match their assigned role.
Hi @Juanisola ,
As per your requirement you need to get all Identities that have “ROLE 1” and all access of that identity also include entitlements and access profile of “ROLE 1” and other access of these identity you can use below search query .It will give all identities that have “ROLE 1” and also other access of identities that have “ROLE 1”
