Unable to upload customized Aveksa privileges in RSA Identity Governance and Lifecycle
4 years ago
Originally Published: 2017-03-17
Article Number
000042299
Applies To
RSA Product Set: Identity Governance and Lifecycle
RSA Product/Service Type: Enterprise Software
RSA Version/Condition: 6.9.x, 7.0.x
Issue
Some customized Aveksa privileges will not load in Admin > User Interface > Security Files.

When uploading a SecurityContext.csv with the following example:
 
SECURE_OBJECT_TYPE,NAME,ACTION,IMPLICIT_HAS_QUERY,IMPLICIT_BS_CHANGE,IMPLICIT_BU_CHANGE,SCOPE_TABLE,SCOPE_FILTER Application,View Bugzilla_Perforce_Bond Tech,View,,,,t_applications,name in ('Bugzilla','Perforce','Bond Tech') Application Accounts,Manage Bugzilla_Perforce_Bond Tech,Manage,,,,t_applications,name in ('Bugzilla','Perforce','Bond Tech')

The following error occurs:
Incorrect number of fields.
Should be 8 found 10.

User-added image
Resolution
The following format changes in red font correct the problem.
 
SECURE_OBJECT_TYPE,NAME,ACTION,IMPLICIT_HAS_QUERY,IMPLICIT_BS_CHANGE,IMPLICIT_BU_CHANGE,SCOPE_TABLE,SCOPE_FILTER Application,View Bugzilla_Perforce_Bond Tech,View,,,,t_applications,"scope.name in ('Bugzilla','Perforce','Bond Tech')" Application Accounts,Manage Bugzilla_Perforce_Bond Tech,Manage,,,,t_applications,"scope.name in ('Bugzilla','Perforce','Bond Tech')"
Notes
Uploading a SecurityContext.csv is only for creating new entitlements in the Aveksa application, not for overriding existing.  Do not load the entire SecurityContext.csv that is deployed in ACM through the user interface, only additional entitlements.
Don't see what you're looking for?