8.4p1
Is it possible to include the entitlements of a user which are part of a detected roles to be displayed in the Remove Access Requests page under Manage User Access? Is yes, could someone please provide some details on how to achieve it .
Thank you,
Sai Kiran.
Hi @TKiran,
yes, you should have in the Remove Access section the possibility to remove it.
Those are the element with type Entitlement:
also you can filter for application, attribute ecc…
Hi @Emanuele,
Thanks for the information.
From the Remove access section, we will be able to request for the requestable entitlements for a user which are basically individual entitlements/entitlements which are not part of any roles.
But I am looking for a specific scenario where the entitlements should be displayed even if they are part of some detected roles. I have checked the Dynamic Scope of the QuickLink Population where we have an option to restrict what can be displayed in the Remove Access section, but this is a filter that would be applied on the result Set which already have been filtered by removing the entitlements included in a detected role.
Any idea if this can be achieved in IdentityIQ ?
I don’t think that will be possible with configuration. If any of entitlement is part of role . Individual entitlement can’t be requested to be removed rather only role would be removed .
Oh okay.
Thanks for the information Vishal.
Try making those entitlemets you want to see in remove access as requestable , but FYI those entitltments will also be shown in your add access for any user
They are already requestable.
