You configure workflow for preventative identity policies in the admin tasks that include changes that may trigger an identity policy violation.
For example, if the preventative identity policy prohibits users from having certain admin roles at the same time, configure tasks that assign admin roles to support workflow for preventative identity policies.
Note: Before you configure workflow, create a preventative identity policy with the following settings:
The policy name must be unique across all identity policy sets because workflow processes are associated with preventative identity policies by the policy name.
If multiple preventative identity policies have the same name, multiple workflow processes may apply.
Warning is the only action that can trigger a workflow process.
After you configure the preventative identity policy, determine the tasks that may trigger the policy violation. Then, create a workflow approval policy for those tasks.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|