My Oracle Support Banner

Identity Audit (IDA) Rule Evaluation Group Not Evaluated Correctly (Doc ID 2422441.1)

Last updated on JULY 12, 2018

Applies to:

Identity Manager - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

An IDA rule is defined as follow:

 

 

With the above rule we expect that a violation is reported if a user has or tries to request (policy defined with Evaluate during Requests)

DisconEnt1 and DisconEnt2 together OR DisconEnt3 and DisconEnt4 together

If the user tries to request DisconEnt1 and DisconEnt2 together the violation is reported

 

 

same happens if DisconEnt3 and DisconEnt4 are requested

 

 

Based on the policy rule if entitlement DisconEnt1 DisconEnt2 and DisconEnt3 are requested together we should get a violation reported for DisconEnt1 and DisconEnt2 but not for DisconEnt3 as we are not requesting it together with DisconEnt4 however as we can see the wrong violation is reported

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.