When conducting a user access review (or account access, etc) with a fully built out business role to technical role model, a review item that is shown as not approved for a user currently doesn't present the reviewer with useful information such as which technical roles a user IS approved for in a given application. This enhancement request is to present additional information to a reviewer so that they're not only shown that a user is not approved for a given technical role, but also shown what role is approved for that user. This will aid in reviewer decision making in terms of either keeping unapproved access as an exception, or rejecting that user's access since it does not match their approved access given their business role.

Comments