You can configure a task level policy-based workflow process for an admin task. This workflow process includes one or more approval policies that can associate a preventative identity policy with a workflow. CA IdentityMinder executes the workflow when a violation of the associated preventative identity policy occurs.
Note: For more information about task level policy-based workflow processes, see Policy-Based Workflow.
To create a workflow approval policy for preventative identity policies
For example, if an identity policy violation occurs because a user has the User Manager and User Approver roles, modify the admin tasks that allow administrators to assign roles, such as Create User, Modify User, and Modify Admin Role Members/Administrators.
CA IdentityMinder displays the Task Level Workflow Configuration screen.
In the filter, include the identity policy name, not the identity policy set name.
When you select a workflow process, CA IdentityMinder displays additional fields.
CA IdentityMinder associates the workflow process with the preventative identity policy.
|Copyright © 2012 CA. All rights reserved.||