Hello ISC members
Greetings!
Current process:
- We are sending reminders to the manager before termination date of the users.
- Along with the reminder we are also raising servicenow ticket if manager want to retain mailbox for specific dates like 30 /60 /90 days.
- If manager selects the retention date (like 30 days) from termination date, manual LCS is set for 30 days and AD account remain active.
- Post 30 days LCS changed from manual to automated LCS by SailPoint admin.
Requirement:
- When manager updates the ticket, automatically retention days should be updated to identity attribute.
- On termination date, AD account should not be disabled and manual LCS should be automatically set.
- After 30/60/90 (as set by manager) AD account should be disabled and LCS should be changed from manual LCS to automated LCS (this must be automated).
Note: LCS calculation transform is currently setting up the automated values. Manual LCS is set by sailpoint admin when we have a such requirement to retain AD access for specified period of time.
Please help me to achieve this requirement.
Thanks for reading this long post.