My Oracle Support Banner

Oracle Identity Manager(OIM) 11g Oracle Identity Governance (OIG) 12c Reassigning or Delegating the Reviewer On Certification Tasks Fails To Prevent Self Certification (Doc ID 2613504.1)

Last updated on APRIL 10, 2023

Applies to:

Identity Manager - Version 11.1.2.3.0 to 11.1.2.3.190922 [Release 11g]
Identity Manager - Version 12.2.1.3.0 to 12.2.1.3.200108.2108 [Release 12c]
Identity Manager - Version 12.2.1.4.0 to 12.2.1.4.200206 [Release 12c]
Information in this document applies to any platform.

Symptoms

OIM is not preventing self certification when the certification is reassigned or delegated.

Consider the following use case:

RoleABC has members User1,User2,User3

Created the certification definition with the following:

- Cert type : Role-type
- Content selection : Selected roles > RoleABC
- Certify : Roles + Policies
- Configuration: Avoid self-Review > select Alternate Reviewer - "User Manager"
- Reviewer : User4

User4 receives a review task with User1,User2,User3 then reassigns or delegates the review task to User3.

Since we've set the option to avoid self review, the expectation is that User3 will receive a review task for User1 & User2 and a review task for User3 will go to User3's Manager.

Instead, User3 is receiving a review task with all Users (User1,User2 & User3) which means the self-review check fails in the reassign or delegate scenarios.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.