Hi @VenkatN ,
Primary Certifier -
For identity objects such as entitlements, roles, service accounts, and endpoints, you can add a primary and a secondary certifier as owners. A primary certifier can take actions on the certification and lock the campaign containing the certification.
The primary certifier can also delegate owned line-items to another user, in which case that user becomes the delegated reviewer for that line-item. However, the primary certifier still retains responsibility for that line-item.
Secondary Certifier -
For identity objects such as entitlements, roles, service accounts, and endpoints, you can add a primary and a secondary certifier as owners. A secondary certifier can take actions on the certification but they cannot lock the campaign. Only the primary certifier can lock the campaign.
The secondary certifier can perform actions on certifications, but those actions can be reviewed and overwritten by the primary certifier. The actions taken by the primary certifier are considered final.
Refer Link - https://docs.saviyntcloud.com/bundle/EIC-User-v2022x/page/Content/06-mang-cert/cert-pers-bsd-cert.ht...
For your points below -
1. one of associated entitlement owner able to see and take action on other entitlements are associated with the same role.
This is expected since EO owner is the secondary certifier and based on the definition above secondary certifier can take actions on all entitlements in the same role.
2. we can see multiple certifications for entitlement owners with role associations but everything is visible for entitlement owners.
This is expected as well based on the above information.
3.Entitlement owner can override all other entitlement owners decision.
This is expected behavior as well.
Requirement - Entitlement owner should be able to see and take action on only on their entitlement associated with particular role -
This is not supported in Role Owner campaign. For this, you will have to launch an EO campaign.
Thanks
