Identity Portal Risk configuration does not allow to add/remove roles

book

Article ID: 186037

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite

Issue/Introduction

When the Risk Configuration from the Identity Portal Risk is set up, it does not allow to Add/Remove Roles even when the roles are different.

Cause

This is a limitation to the product, the add operation has to happen first to stop the accidental delete then recreate an account.

Environment

Identity Portal 14.x
(Virtual Appliance and Standalone)

Resolution

A possible workaround is to set up a custom attribute that is evaluated based on value. When they have that value upon a modify a PX Policy will trigger. The PX Policy will manage the roles that the user has. Once this is done then setup the risk to evaluate the value of the attribute.