and more in a single search tool across platforms. Read the announcement here. |
03/13/2024 04:18 AM
Hello All,
We have configured Parent Child Entitlement for AD using Endpoint Filter. We have SOD rules to detect the violation and when we remediate the violation 2 task are created of type remove access for Parent and Child entitlement. This is working as expected.
The Child entitlement is also removed after the provisioning Job. The Parent Entitlement task is moved to completed state and the child entitlement task is pending with error as below. When I run the provisioing Job this task for child entitlement is also moved to completed with state as "No action Required".
Error while DELETE operation for account-txxxxdev to Group-CN=xx-xxx,OU=testapp,OU=dev,DC=test,DC=com in AD - txxxxdev not found in LDAP/AD
We are on 23.8. Is this expected behaviour or a defect
Regards,
Sabthami Subramanian
03/13/2024 06:42 AM
account-txxxxdev to Group-CN=xx-xxx,OU=testapp,OU=dev,DC=test,DC=com --account not a part respective group , can you check in AD once again
03/17/2024 07:57 PM
SOD is defined on parent ent or child ent?