-
Votes
4
Group Review Items by Comment
A customer misses the option to look at commented review items first. This can happen in a 2 phase review or after the reviewer has changed. It would help to be able to ...
Comments (1) | by: Klaus S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Technical role: visibility into the permissions not yet granted
Is there a way to provide visibility into the permissions not yet granted on a technical role? This would be helpful to have so the administrator can facilitate better ...
Comments (0) | by: David T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
10
Expose through reporting how permission was assigned - direct or ...
In terms of reporting, we need way to identify which Technical or Business Role was responsible for user's permission assignment. So when viewing the user's permissions, ...
Comments (0) | by: David T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
4
Scope reports so that Report Administrators only see data for the unit ...
On an enterprise scale, we need more granular way for reports to be scoped to report administrators. For example, as a finance employee (report admin) the reports I run ...
Comments (0) | by: David T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
5
More controls over temporary assignments
1. To be able to assign a technical role to an identity for a pre-defined timeframe. We would need to be able to track the assignment. 2. Business Role whitelist and ...
Comments (0) | by: David T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
5
Identity data collection via change log
Identity data collection via change log: updates occur at one hour intervals, on the hour. How do we change the time and interval? In training, we were informed there is ...
Comments (0) | by: David T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
Check for Business Role violations when creating or changing SoD ...
In the current version 3.0.1 it is possible to check for SoD violations for users and accounts when creating or changing a SoD policy. The request is to have the ...
Comments (0) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
4
Import and Export SoD policies from/to a csv file
It is very common to have a SoD policies in a csv file before the customer acquires a solution to keep them so it would be great if it would be possible to import SoD ...
Comments (0) | by: Hugo H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
Importing and exporting Access Request Policy definitions
Almost everything in Identity Governance can be imported and exported in json format. One thing which is still missing in import/export are Access Request Policy ...
Comments (0) | by: Raymond M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
6
Role Composition Periodic Access Review
Have a role composition (not membership) such as which permissions are part of a IT role that is reviewed periodically by someone (e.g. role owner, app owner). The idea ...
Comments (2) | by: Hugo H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
Multiple serial approvers for Business Roles
For many approvals in IG, it is possible to have multiple approval stages e.g. for Access Request Approval Policies and for Reviewers. I is requested to have the same ...
Comments (1) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Inactivate as an fulfillment options
For some systems, especially finanse systems, an requirement is to be able to inactivate the account instead of removing the account. It is therefore requested to be ...
Comments (1) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
4
Create a SoD policy which has as a condition identity attribute data
Create other types of SoD policies or just access policies that consider the mix of permissions and identity attribute date. For instance, an user who is a contractor ...
Comments (3) | by: Hugo H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
2
Capability to change the Authorization Assignment permissions
Use Case: Review Administrators who need to work with their Email Templates (for Reviews, naturally). But only the Global Administrator can work the Notification Emails. ...
Comments (0) | by: Jim M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
4
Option to exclude "Keep" by category from the unmapped account review
When doing an unmapped account review it should be possible to be able to exclude accounts that has been marked as "Keep" and assigned a category from the unmapped ...
Comments (1) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Possibility to chose the source for email-address in Identity ...
Identity Reporting notification takes the email address from the SSO provider. This does cause problems, if the SSO provider do not have updated email-addresses as an ...
Comments (0) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Use Business Role data for mapping permission in a multi affiliated ...
Multi affiliation can be implemented in at least two ways: multi accounts one per affiliation, single account combining the affiliation permissions into one account. ...
Comments (0) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
On- and offboarding
The first process in governing identities is onboarding. It would be beneficial if the onboarding process could be initiated from IG, by letting the right people to be ...
Comments (0) | by: Ken W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
Second-level manager needed in Approval Policy
Approval Policy needs direct supervisor and second-level supervisor as pickable approver sequence, e.g., First Approver: Requestor's Manager Second Approver: Requestor's ...
Comments (1) | by: David S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
3
Review definition can initiate a query onto the IG application ...
Review definition can initiate a SQL select onto the IG application database to obtain a Review Set For a User or Account Review - the Review Set may be obtained live at ...
Comments (1) | by: Jim M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Identity Governance (IG).
