Is there a way to manage PIM roles without manaully editing in ENTM or via the CA Management Console?
Right now it looks like we have to go to the ENTM and edit each role and member policy individually manually,
Home › Environments › ac-env › Roles
Click on Export...
Modify exported XML
Click on Import...
and import update XML.
This seems very cumbersome. The XML would be faster except we have to enable (and disable) each time we want an update.
And the import of a full overwrite (not incremental ) seems like a shot gun approach to when we really need a surgical approach.
We will be on-boarding hundreds of applications over the next couple of years and we are needing a way to more easily add a single member rule into a role. Even if it is via a REST API or some other method? And if we can incorporate it into some form of automation it would simplify our onboarding process as well.
The description you have provided looks more like a product enhancement.
I would check with the moderator if this can be moved as an idea so that this gets the proper attention.
We can't move discussions to ideas. Please post this as an idea to the CA Security Community under the CA Privileged Access Management category.
How to post an idea: Create and Submit an Idea within CA Communities