Share all details related to your problem, including any error messages you may have received.
Hi,
I have requested business role through custom form and added some entitlements. And also I requested business role through RBAC form and some entitlements. Here few entitlements are matched that entitlements not provisioning properly already there those entitlements. Now, I am going to request business role remove access through RBAC form those entitlements not revoked properly why because already those entitlements provisioning through custom form. How to remove those entitlements through RBAC form.
You need understaning why you cant remove.
If the user satisfies the condition of the role, this role will be assigned to the identity(if are not present some exclusion). Also, if the identity have the all the IT role contents in the BS role, BS role will be assigned.
Otherwise, what you mean with RBAC form?
For remove an entitlement from an identity you can use the Manage Access page and revoke it:
Hi Emanuele
I have understood why not removed out of the box form (RBAC Form). I did request business role through customization form. IT role information has entitlements that were present in out of the box as well. I need solution if both forms provisioning same entitlements how to remove the entitlements I could see the remove icon in the form. Please guide me how to get remove icon in the form.
Please refer to the use case below.
User X has entitlement A,B. Now his manager requested a business role for User X which contains couple of IT roles inheriting entitlement A,C,D. Once the request is approved SailPoint provisions only entitlement C and D for the user as the identity already has entitlement A. But in case of deprovisioning of same business role it is observed that SailPoint only deprovisions C and D.
It is expected to deprovision A as well because it is also part of that business role.
Is this the normal behavior of SailPoint. If yes then any workaround for this.
