How can you add an "Access" (target application group defined as Access) as an entitlement for a provisioning policy in ITIM 5.1?
Target = LDAP
Service Name = LDAPService
Target Group in LDAP = XYZ
Target Group named/defined as Access = "XYZAccess"
Provisioning Policy = LDAP_Policy
A group of users require an account in LDAP and membership to "XYZ" group in LDAP.
Now I know I can simply use "Group" attribute as a parameter and statically add membership to "XYZ" group.
but question is, how can I leverage the "Access" facility to provide entitlement so that I can add the entitlements without going all the way to the parameters and defining it statically.
Any thoughts/ideas are welcome.
Pinned topic How to add "Access" as an Entitlement of provisioning policy (ITIM5.1)
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
Updated on 2013-02-26T05:47:39Z at 2013-02-26T05:47:39Z by SystemAdmin
yn2000 100000540S1086 Posts
Re: How to add "Access" as an Entitlement of provisioning policy (ITIM5.1)2012-09-07T14:09:01ZThis is the accepted answer. This is the accepted answer.I am not sure I understand what you want here.
Entitlement is a policy. It sounds like you want to change the policy based on the access that the user is asking.
To exaggerate, Mr. Customer, could you please change your security policy so that I can access to XYZ application?
SystemAdmin 110000D4XK9855 Posts
Re: How to add "Access" as an Entitlement of provisioning policy (ITIM5.1)2013-02-26T05:47:39ZThis is the accepted answer. This is the accepted answer.Its is nice to add group accesses as entitlement targets in a policy. Is it possible to do this?