search cancel

How to filter the Roles in Access Module - Applications tab

book

Article ID: 229648

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Portal CA Identity Manager

Issue/Introduction

In this article, we will suggest a way to filter the Tasks (Roles) when you have Internal and External users and the user can select only their specific roles

Environment

Identity Portal 14.x

Identity Manager 14.x

Resolution

- You need to set a Provisioning Role's attribute with "internal" or "external" to Identity Portal compared with the User's attribute.

In this configuration we are using the Role "Comments" attribute in the Identity Manager, see image below:

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=VZwlGxeqpBbr+MIlmzMJbA==

 

- After that, RESTART "CAIM" connector in the Identity Portal Admin UI

- In the Identity Portal Admin UI check the "Execution Plan" associated with the "Target Permission" you would like to filter

- You can change the "Execution Plans" associated or create a new one and set the new one in the "Target Permissions"

- Edit the "Execution Plans" and select "ATTRIBUTE FILTER"

- Below is how the "Execution Plans" was set up:

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=U1FOc46030TaFExrr3oMtQ==

 

The "Execution Plans" will compare the Comments attribute of the Provisioning Role with the User's Title

 

Note: You can select a different User attribute to compare, this is just a sample.

 

Additional Information

For further information about the "Execution Plans" see the documentation below:

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-portal/14-4/administrating/identity-portal-administration/elements/backend/configure-an-execution-plan.html