Termination rule intermittently fails to delete or disable accounts in RSA Identity Governance & Lifecycle
3 years ago
Originally Published: 2019-06-19
Article Number
000040948
Applies To
RSA Product Set: Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0, 7.1.1


 
Issue
A termination rule that is supposed to disable or delete accounts intermittently fails to disable and/or delete accounts.
 
Cause
The accounts that are neither disabled nor deleted are either shared or service accounts. This is expected behavior and is specified in the Termination Rule itself. In the RSA Identity Governance & Lifecycle User Interface, go to Rules > Definitions > Create Rule.  then choose Provisioning - Termination from the drop-down menu of Rule Type and note the Actions as seen in the screenshot below (excludes shared and service accounts):
 
User-added image
Resolution
To make sure that a termination rule deletes an account, ensure that the account is not shared and/or is not a service account.

To make sure a termination rule disables a shared or service account, make sure the Actions shown below for Disable shared accounts and/or Disable service accounts are checked.
 
User-added image

Related Articles

Trending Articles

Don't see what you're looking for?