When an employee leaves the company, how can we know all the responsibilities of this identity (Access Profiles or Governance Groups assigned for approval or if he/she is owner of sources)?
Is there any way to change these responsibilities in bulk?
for example:
EMP1 leaves Company
o EMP1 is the “1Password” Application Owner
o EMP1 is into a Governance Group
o EMP1 has some Access Profiles assigned to him to approve
EMP2 is him substitute
We want to change all responsibilities assigned to EMP1 for EMP2 .
Maybe you could use the Search API to get the objects where the user is Owner (Just Roles and Access Profiles) and then use the objects APIs to change this in bulk (Access Profiles, Roles)
I think this trigger needs to be external from IDN or maybe use the new Workflow feature to do this.
I believe your first use case could be met in the “Work Reassignment” feature we’re looking to add. In addition, mass-moving a user’s assigned work (be they tasks, access request approvals, certifications, etc) from one user to another is a similar use case to what you describe, which is in “Work Management”.