Hi All,
I have requirement to create a workitem task and assign it to IAM-support workgroup on account create operation for connected application (JDBC connector). Is it possible to create a work item task and assign it to workgroup for manual fulfillment in ISC. I am thinking to achieve this through before provisioning rule. Does anyone come across this use case before?
HI @sagar_kamalakar ,
Is the requirement just to notify the IAM support team or any actions needs to be performed by them? Canāt we achieve it by creating a ticket to IAM support team in case of any action needed or send email just to notify them via workflows?
Hi @sagar_kamalakar,
You can have a Workitem created by updating the Configuration of JDBC and removing Provisioning but you canāt assign it to a Workgroup it will get assigned to the owner of the Source.
āfeaturesā: [
āDIRECT_PERMISSIONSā,
āENABLEā,
āDISCOVER_SCHEMAā,
āUNLOCKā,
āPROVISIONINGā,
āSYNC_PROVISIONINGā,
āGROUP_PROVISIONINGā
]
@JackSparrow They need work item to mark as complete once they create account into target system.
Canāt we achieve it by creating a ticket to IAM support team in case of any action needed or send email just to notify them via workflows?
I want to send email notification from workflow then what would be my workflow trigger in this case? I am going to nullify my plan into before rule I mean removing account request from plan because I donāt want to trigger create.
Hi Rakesh,
I cannot remove āPROVISIONINGā feature because I have JDBC provisioning rule where I am doing some MODIFY ,ENABLE, DISABLE Operations by calling Update SQLs.
Yes, itās possible to create a work item for manual fulfillment in ISC and assign it to a workgroup. You can achieve this by using a Before Provisioning Rule to intercept the create account operation. In the rule, construct a manual work item using WorkItemRequest and assign it to the IAM-support workgroup. Ensure the provisioning plan is adjusted to mark the operation as manual if needed. This approach is common when fulfillment canāt be automated, such as with JDBC sources.
Thanks
Manvitha.Nalabolu
Can you provide me a sample code? I have below will it work?
WorkItem workItem = new WorkItem();
workItem.setName("Blocked Create Account Request - " + application.getName());
workItem.setDescription(msg);
workItem.setType(Type.Manual);
workItem.setPriority(WorkItem.PRIORITY_MEDIUM);
workItem.setTargetIdentity(identity); // or send to admin identity below
workItem.setCreated(new Date());
Identity admin = context.getObjectByName(Identity.class, "IAMworkgrpID");
if (admin != null) {
workItem.setOwner(admin);
}
context.saveObject(workItem);
}
I doubt with using context object will this support in ISC before cloud rule?
Your code snippet for creating and assigning a work item is mostly correct, but to assign it to a workgroup, you need to use Workgroup instead of Identity. Try this
WorkItem workItem = new WorkItem();
workItem.setName("Blocked Create Account Request - " + application.getName());
workItem.setDescription(msg);
workItem.setType(WorkItem.Type.Manual);
workItem.setPriority(WorkItem.PRIORITY_MEDIUM);
workItem.setTargetIdentity(identity);
workItem.setCreated(new Date());
// Fetch the workgroup by name
Workgroup workgroup = context.getObjectByName(Workgroup.class, "IAM-Support");
if (workgroup != null) {
workItem.setOwner(workgroup);
}
context.saveObject(workItem);
Replace Identity admin = context.getObjectByName(ā¦) with Workgroup workgroup = context.getObjectByName(ā¦) to properly assign the work item to a group.
Thank you
Manvitha.Nalabolu
HI @ManvithaNalabolu06 ,
ISC before provision rule do not support context object here is ISC documentation
Please share how if this was achieved. We have a similar requirement.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
