search cancel

Identity Portal Risk configuration does not allow to add/remove roles


Article ID: 186037


Updated On:


CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite


When the Risk Configuration from the Identity Portal Risk is set up, it does not allow to Add/Remove Roles even when the roles are different.


Identity Portal 14.x
(Virtual Appliance and Standalone)


This is a limitation to the product, the add operation has to happen first to stop the accidental delete then recreate an account.


A possible workaround is to set up a custom attribute that is evaluated based on value. When they have that value upon a modify a PX Policy will trigger. The PX Policy will manage the roles that the user has. Once this is done then setup the risk to evaluate the value of the attribute.