When running a campaign, if you click the icon on the righ hand side of the user access, it shows User violation, Role violation and Link violation. What are the different types and why are they being shows? How does IDG identify which one is the user,role or link violation?

Release:
Component: SGRM

These are based of audit cards and BPRs. When you run a campaign, you can ask to not show violations- default setting - or show violations based on BPR or violations based on audit card.
The policies in the BPR define what type of violation it is. Example, this user with this role cannot have this other role. This is a role type violation. You define the type of violation when you create the policies or audit cards.
 

For more information see:
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-governance/14-5/administrating/business-policy-compliance/create-a-business-policy.html