Users with only basic role can still see all tabs in Identity Governance UI

book

Article ID: 77052

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal

Issue/Introduction



After creating a user in Identity Governance with basic role, the user is still able to see all the tabs in the management console just like an administrative user. How can the basic role permissions be enforced? 

Environment

Release:
Component: 

Resolution

By default, CA Identity Governance Portal security is disabled. When a user logs in using a recognized user name, the Portal does not verify the user permissions and there are no limits on what the user can view and do.


This behavior is governed by the parameter: 

sage.security.disable=true


This parameter will need to be set to false so that only the specified permissions are allowed for the user. 


Once the value is set to false, recycle Jboss. 

Additional Information

For more information, see:

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/identity-governance/14-3/configuring/security-and-encryption.html