How to handle when sunrise/sunset falls on same date

iamksatish · August 12, 2024, 9:02am

One simple solution you can think of for this use a advanced policy violation rule, where actually you can get the future identity vs current identity, compare the role assignments user will be having differently (or you are sure none of the existing assignments will have start and end date same - you can directly check on new identity ) and for the assignments get the StartDate and endDate of the assignments if both are same, throw a policy violation

This should resolve your issue.

Few pages which can help policy violation

Advanced Policy Violation Rule - IdentityIQ (IIQ) / IIQ Show and Tell - SailPoint Developer Community

Advanced Policy Violation - Restrict to request only 1 Entilement for an Application - IdentityIQ (IIQ) / IIQ Discussion and Questions - SailPoint Developer Community

Topic		Replies	Views
Adding Sunrise/Sunset Dates Programmatically to Specific Entitlements IIQ Discussion and Questions workflows , identityiq , provisioning , access-requests , entitlements	3	146	October 22, 2024
Sunset date mandatory for entitlements IIQ Discussion and Questions identityiq , access-requests	2	31	November 4, 2024
Sunrise and sunset for access request IIQ Discussion and Questions identityiq , access-requests	11	115	November 1, 2024
Does IDN support Sunrise and Sunset? ISC Discussion and Questions identity-security-cloud	6	243	June 4, 2024
Sunset Expiration Reminder - Email Template IIQ Discussion and Questions workflows , rules , email-templates , identityiq , roles , entitlements	10	75	September 17, 2024

How to handle when sunrise/sunset falls on same date

Related topics