8.4p1
Is it possible to include the entitlements of a user which are part of a detected roles to be displayed in the Remove Access Requests page under Manage User Access? Is yes, could someone please provide some details on how to achieve it .
Thank you,
Sai Kiran.
Hi @TKiran,
yes, you should have in the Remove Access section the possibility to remove it.
Those are the element with type Entitlement:
also you can filter for application, attribute ecc…
Hi @Emanuele,
Thanks for the information.
From the Remove access section, we will be able to request for the requestable entitlements for a user which are basically individual entitlements/entitlements which are not part of any roles.
But I am looking for a specific scenario where the entitlements should be displayed even if they are part of some detected roles. I have checked the Dynamic Scope of the QuickLink Population where we have an option to restrict what can be displayed in the Remove Access section, but this is a filter that would be applied on the result Set which already have been filtered by removing the entitlements included in a detected role.
Any idea if this can be achieved in IdentityIQ ?
I don’t think that will be possible with configuration. If any of entitlement is part of role . Individual entitlement can’t be requested to be removed rather only role would be removed .
Oh okay.
Thanks for the information Vishal.
Try making those entitlemets you want to see in remove access as requestable , but FYI those entitltments will also be shown in your add access for any user
They are already requestable.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
