We use both IG and IP for the recertification process. IP is used for end user/reviewer for logging into the portal and completing the recertification.
IG is mostly for the developers and administrator who needs to get access for reassignments. As part of it, we tried to give admin monitor roles for some of the application owners who want to handle the reassignments through IG, so we want to create roles that will have visibility for only particular workflows/campaigns/universes.
Steps we used
1. Create a role in eurekify and give that role access to the user.
2. Clear the cache
3. Tried to log in with that user ID
Still, the user is able to see all the workflows which he should not have access to.
We need guidance to fix this issue and enhance our role-based access for the application owners.
Release : 14.4
Component : GovernanceMinder(Role & Compliance Manager)