MAEDC grants Entitlements to all Accounts with the same name regardless of Application in RSA Identity Governance & Lifecycle
Originally Published: 2020-08-29
Article Number
Applies To
RSA Version/Condition: 7.0.0
Issue
Consider the following example where account AdminAccount is collected into three different applications:
Application: Perforce
Account: AdminAccount
Application: FileSystem
Account: AdminAccount
Application: Bugzilla
Account: AdminAccount
AppRole: ManageBugzillaJiras
After the three AdminAccounts are collected by an MAADC, the associated MAEDC grants application role ManageBugzillaJiras to all three accounts in all three applications instead of Bugzilla only.
Account: AdminAccount
Application: FileSystem
Account: AdminAccount
Application: Bugzilla
Account: AdminAccount
AppRole: ManageBugzillaJiras
After the three AdminAccounts are collected by an MAADC, the associated MAEDC grants application role ManageBugzillaJiras to all three accounts in all three applications instead of Bugzilla only.
This issue can be observed by going to Resources > Directories/Applications > {Directory/Application name} > Accounts tab. The same account name will appear once for every directory/application that has that account name.
Cause
Resolution
- RSA Identity Governance & Lifecycle 7.0.0 P01
- RSA Identity Governance & Lifecycle 7.0.1
Related Articles
Grant a Trusted User Group Access to Agents Number of Views In RSA Via Lifecycle and Governance the Allow Multiple Selections checkbox is disabled for the User Accounts Table in the … Number of Views Request forms for adding user access allow the selection of entitlements already granted indirectly in RSA Identity Govern… Number of Views How to grant administrator access to a user in RSA Via Lifecycle and Governance Number of Views RSA Identity Governance and Lifecycle - 702 Migration fails with ORA-01720: grant option does not exist for 'SYS.DUAL' Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Enable SSH from a console connection if the Operations Console is not available for RSA Authentication Manager 8.x RSA Authentication Manager Upgrade Process Download RSA SecurID Access Cloud Administration audit logs using Cloud Administration REST API CLU RSA MFA Agent 2.4.3 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
