Oracle Identity Manager(OIM): Identity Audit (IDA) Rule Evaluation Group Not Evaluated Correctly
(Doc ID 2422441.1)
Last updated on APRIL 03, 2023
Applies to:
Identity Manager - Version 11.1.2.3.0 and laterInformation in this document applies to any platform.
Symptoms
An IDA rule is defined as follow:
With the above rule we expect that a violation is reported if a user has or tries to request (policy defined with Evaluate during Requests)
DisconEnt1 and DisconEnt2 together OR DisconEnt3 and DisconEnt4 together
If the user tries to request DisconEnt1 and DisconEnt2 together the violation is reported
same happens if DisconEnt3 and DisconEnt4 are requested
Based on the policy rule if entitlement DisconEnt1 DisconEnt2 and DisconEnt3 are requested together we should get a violation reported for DisconEnt1 and DisconEnt2 but not for DisconEnt3 as we are not requesting it together with DisconEnt4 however as we can see the wrong violation is reported
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |