OIA Not Flagging A Policy Violation When It Should
(Doc ID 2211894.1)
Last updated on FEBRUARY 11, 2017
Applies to:Oracle Identity Analytics - Version 220.127.116.11.8 and later
Information in this document applies to any platform.
In OIA 18.104.22.168.8 certain rules do not seem to flag up violations, even though there are users who should be violating these rules. This seems to apply to rules combined together with an AND policy.
In generic terms we have a:
Rule A: Condition A1 (identifying a resource) and Condition A2 (identifying an entitlement for that resource)
Rule B: Condition B1(identifying a different resource) and Condition B2 (identifying an entitlement for that resource)
Rule C: (Condition A1 and Condition A2) AND (Condition B1 and Condition B2)
(i.e. effectively Rule A and Rule B)
(The rules A and B refer to 2 different resources a user may have.)
A user satisfies both Rule A and Rule B (and so should satisfy Rule C)
Create a policy on Rule A and a violation is flagged.
Create a policy on Rule B and a violation is flagged.
Create a policy on Rule C and NO violation is flagged.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document