Future revoke access

clstromgren · September 2, 2022, 7:04pm

I am trying to set up a process that after approving (with event trigger) will set a revocation date or time in the future for the access. The API docs state that for the Revoke Access action, if you specify a removeDate, it will remove the access at the date and time. Seems that regardless of the removeDate I specify, it immediately removes the access. I have tried a few minutes in advance to over 24 hours in advance (since taking note of the 24 hour SLA for deprovisioning). I have tried on both the V3 & beta endpoints. Any ideas?

Thank you,
Caleb

Here is my call:

{
    "requestedFor": [
        "2c9180858222dd1e01822b2678101abb"
    ],
    "requestType": "REVOKE_ACCESS",
    "requestedItems": [
        {
            "type": "ACCESS_PROFILE",
            "id": "617d4718e6524e6aab5c2832c3d7ffe0",
            "removeDate": "2022-09-03T23:40:00.000Z",
            "comment": "access has expired"
        }
    ]
}

colin_mckibben · September 6, 2022, 2:33pm

Welcome to the developer community Caleb.

The removeDate should be honored by IDN. Have you created a support ticket so our engineers can investigate the details of your environment?

clstromgren · September 6, 2022, 5:07pm

Thanks for the response, no i have not. I can get one opened

Topic		Replies	Views
Workflow to revoke Access after X hours ISC Community Knowledge Base workflows , identity-security-cloud	0	430	April 17, 2024
Issue with access Request revocation date ISC Discussion and Questions identity-security-cloud , access-requests	1	83	September 13, 2024
Set the access profile expiration date using Workflow ISC Discussion and Questions workflows , identity-security-cloud	6	421	March 10, 2024
Removing the Expiration Date from the Access Requests ISC Discussion and Questions identity-security-cloud	5	464	April 16, 2024
Enhancement: Expiration dates in entitlement requests Product News	17	528	August 14, 2024

Future revoke access

Related topics