and more in a single search tool across platforms. Read the announcement here. |
on 03/30/2023 01:56 PM
Achieving real-time provisioning of access involves two factors:
a. Instant creation of tasks as soon as the request is submitted
b. Instant fulfillment/provisioning of access as soon as the task is created
How to achieve instant creation of tasks?
In case of role based entitlement tasks creation(or tasks for standalone entitlements where startdate is present), one of the two can happen
To achieve instant creation of tasks, a config is available in the Global configurations ARS/home/request (depending on the label) as below –
NOTE – Maximum time difference allowed in the product in 15 mins . You can leave this config as blank in case you do not want to create role entitlement tasks without EnterpriseRoleManagementJob job.
Instant creation of tasks can be achieved with Enterprise roles and Application Roles as well . Enterprise Roles and Application roles also exhibit same technical behavior as firefighter role where you provide start date and end date. However, you might not have default time frame added in case of these type of roles but you can come across time bound scenarios where end users have explicitly selected a time difference of half hour or one hour between start date and end date.
How to achieve fulfillment/provisioning of tasks?
To achieve real time provisioning we have a config 'Instant Provisioning' under security system which instantly provisions the access once you have the tasks created without losing time. Enable the below config to achieve the same.
What is default timeframe in minutes for create task if less than