FOR CA Privileged Access Manager -PAM endpoint, when the provisioning role (and the account template as a consequence) is removed, Devices (and Target Accounts) are not removed as expected, despite the operation is executed successfully. During the removal of the provisioning role only HTTP GET operations are observed in the endpoint logs.

We see the entries for removed roles still in user.

Identity Manager 14.5.X

Incorrect handling of attribute eTDYN-str-multi-c-04 by IM.

Development provided a hot fix (HF_PS-14.5.1-20250328161246-DE627499.tgz.gpg) to resolve the issue.

Please reach out to support if you need to obtain this fix before it will be in the main line of code.