Symantec IGA

Expand all | Collapse all

CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?

Jump to Best Answer
  • 1.  CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?

    Posted 02-21-2019 02:36 AM

    CA Identity Suite Demo env.

    When login as normal user, we are able to resume/suspend own AD account without approval. 

    Can we set this task with approval workflow when user try to resume/suspend own account in Portal or IDM ? 



  • 2.  Re: CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?

    Posted 02-22-2019 11:01 AM

    Can you make sure the same tasks ( suspend account) is able to trigger workflow from IDM? 



  • 3.  Re: CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?

    Posted 02-28-2019 12:31 AM

    I tried ald, when the Admintask "PortalPortal Change Account Password" set with workflow,

    the result is that the approval request appear in IDM UI only. It does not appear in IdentityPortal.

     

    *Note that, when we Change Password on an EndPoint account, it does not generate any request into "My Request".

    IdentityPortal just fire the request directly into IDM.

     

    The EndPoint->Change Password, Unlock/Resume/Suspend, is executed with build in form.

    This form does not appear in Identity Portal management console.



  • 4.  Re: CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?
    Best Answer

    Posted 02-28-2019 07:51 AM

    The ptimary object for the task generated is the Endpoint Account. The portal checks for workflows by user, so the workflow does not appear in the IP



  • 5.  Re: CA Identity Portal: Suspend/Resume AD Account directchange can trigger workflow ?

    Posted 03-04-2019 09:05 PM

    Hi Gil,

    Let said customer ask, whether on this event IP->Endpoint Account->Change Password/Resume Account, can it be set with approval workflow ?

     

    Another question is that, can we set/configure "Secondary factor authentication" on this particular event ?

     

    regards,

    William