Possibilities where the end user can only request a single role

Hi guys,

I need some support to think of ideas to solve this scenario: In the Request Center, the end user can only request a single role. Imagine that in the Roles tab there are X roles separated by department. If the user requests one of the roles, he/she will not be able to request another.

Scenarios such as Segments and ETS Access Request Submitted have already been considered, but they are not a good option for our current scenario.

Do you see any other options? I think it will be difficult to solve this problem without ETS Access Request Submitted, but who knows, maybe someone has a similar scenario that was solved without ETS haha.

I don’t think this is possible. Best I can think of is using a script to list the identities that are part of each role (get-role-assigned-identities | SailPoint Developer Community), then creating a report to see if anyone shows up in more than one role. That way it can be remediated. But I don’t think it’s possible to prevent someone from requesting more than one role.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.