Identity Portal - nested roles do not appear as assigned

book

Article ID: 221694

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Portal CA Identity Suite

Issue/Introduction

Nested Roles do not appear as expected. The + and - options appear even if a user already has a child permission, and if you add a top-level access permission, and the user already has one of the Nested Roles, when you view the "My Requests" you see a "Failed" message even though the roles were assigned correctly. Is there a way to correct this?

‚Äč

Cause

Configuration issue.

Environment

Release : 14.3\ 14.4

Component : IdentityMinder(Identity Manager)

Resolution

Nested permissions appear as assigned in Identity Portal with the right configuration in the Access Module.

 

I have four provisioning roles in IM namely PR1, PR2, PR3, NestedPR where NestedPR has nested provisioning roles of PR1 and PR2. I will detail the steps for my case and follow them in order to see assigned/un-assigned permission in the Identity Portal. 

 

1. Create Target Permission for PR1, PR2, PR3, NestedPR.

2. In the Access Module create an application-permission mapping like below.

 

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=7UPi8Hh1lMI7ArhHhl+/Aw==

 

NestedPR is the parent permission and Prov1 & Prov2 are child permissions. 

 

3. Go to User Console, to see the nested structure of permissions.

 

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=9096SrWc7hgF89ndrtHFeQ==