ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Identity Portal - nested roles do not appear as assigned


Article ID: 221694


Updated On:


CA Identity Manager CA Identity Portal CA Identity Suite


Nested Roles do not appear as expected. The + and - options appear even if a user already has a child permission, and if you add a top-level access permission, and the user already has one of the Nested Roles, when you view the "My Requests" you see a "Failed" message even though the roles were assigned correctly. Is there a way to correct this?



Configuration issue.


Release : 14.3\ 14.4

Component : IdentityMinder(Identity Manager)


Nested permissions appear as assigned in Identity Portal with the right configuration in the Access Module.


I have four provisioning roles in IM namely PR1, PR2, PR3, NestedPR where NestedPR has nested provisioning roles of PR1 and PR2. I will detail the steps for my case and follow them in order to see assigned/un-assigned permission in the Identity Portal. 


1. Create Target Permission for PR1, PR2, PR3, NestedPR.

2. In the Access Module create an application-permission mapping like below.


NestedPR is the parent permission and Prov1 & Prov2 are child permissions. 


3. Go to User Console, to see the nested structure of permissions.