Oracle Identity Manager(OIM) 11g Oracle Identity Governance (OIG) 12c Reassigning or Delegating the Reviewer On Certification Tasks Fails To Prevent Self Certification
(Doc ID 2613504.1)
Last updated on APRIL 10, 2023
Applies to:
Identity Manager - Version 11.1.2.3.0 to 11.1.2.3.190922 [Release 11g]Identity Manager - Version 12.2.1.3.0 to 12.2.1.3.200108.2108 [Release 12c]
Identity Manager - Version 12.2.1.4.0 to 12.2.1.4.200206 [Release 12c]
Information in this document applies to any platform.
Symptoms
OIM is not preventing self certification when the certification is reassigned or delegated.
Consider the following use case:
RoleABC has members User1,User2,User3
Created the certification definition with the following:
- Cert type : Role-type
- Content selection : Selected roles > RoleABC
- Certify : Roles + Policies
- Configuration: Avoid self-Review > select Alternate Reviewer - "User Manager"
- Reviewer : User4
User4 receives a review task with User1,User2,User3 then reassigns or delegates the review task to User3.
Since we've set the option to avoid self review, the expectation is that User3 will receive a review task for User1 & User2 and a review task for User3 will go to User3's Manager.
Instead, User3 is receiving a review task with all Users (User1,User2 & User3) which means the self-review check fails in the reassign or delegate scenarios.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |