There are two rules you can use for risk in the Identity Portal that we think require a bit of explanation.
Do not contain any of the following
Do not contains all of the following
Release : 14.4
Do not contain any of the following - expected behavior is:
True when: if any or none of the roles are present - if any or none of the given roles are present, then there is a risk, so it will show risk.
False when: if all the roles are present - if all of the given roles are present, then there is no risk, so it will show no risk.
Do not contains all of the following - expected behavior is:
True when: if all the roles are not present - If all of the given roles are not present, then there is a risk, so it will show risk.
False when: if any one or all the roles are present - If any or all of the given roles are present, then there is no risk, so it will show no risk.