Is there a way to restrict users in manage user access.
For example: All users can view any access in manage user access page. But only users belonging to a certain AD group can request for specific high privilege access.
You can configure Request controls (what can members request for? as shown in UI) use RequestObjectSelector rules and configured in dynamic scopes
refer Quicklinks and Rules for more information
Hi wadu,
You go to global settings-> quicklink configuration and under every one, You can create a rule, what members can request for. Put you logic there, and it will control, who can see what.
Hi Bhuvanesh, thanks for the reply. How can I configured request object selector in IIQ to work with LCM module. How does it restrict user from requesting entitlements. I’m new to IIQ, is there any course or material I can refer to know more about this. Thanks!
Hi Naveen, thanks for the suggestion. In my case, I want the user to see all entitlements (not hide anything) but while user is submitting the request I need to check if the user is eligible for that access, and if not prompt the user. Can this be done, also can we make use of policies for this? Thanks.
yes, that can be done, put your validation code in the lcm workflow, and you can allow or reject user submitting the request.
You can use policies as well, if there are conflicts.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.