Hi,
Wondering if anyone out there has used the above workflow template. Its built and it works, but I have some issues that I can’t resolve or find documentation for:
1 - Dynamic group membership will cause flip-flopping with the entitlement. I temporarily fixed this by excluding dynamic groups from the aggregation (not really happy with that fix)
2 - We use PIM via Entra to elevate peoples access. This will cause flip-flopping and I don’t know how to fix that
3 - This workflow revokes access for all accounts, not just correlated ones, which means any other accounts (eg service) will get stripped of their entitlements - will look at adding. Might try adding a compare operator (boolean) at the start to filter out non-correlated accounts.
Are there any other issues that people have come across implementing this workflow?
Thanks