As part of IDM implementation we have executed ABAP Initial Load to fetch the data from the back end Systems . Privileges are sync back to IDM as part of this Initial Load .So after this initial load when we assigned certain privileges to the same user , roles which are updated to the user as part of ABAP Initial Load or Back end Sync are wiped out from Back end System . Can you explain why this is happening & how we can fix this issue ?
Example below :
1) ABAP Initial Load executed for System GTS
2) User A roles (Priv 1 , Priv 2 ) in GTS system was sync to IDM System.
3) Approval workflow Testing we initiated PRIV 3 assignment to User A .
4) IDM Provision workflow group only PRIV 3 to User in backend system & removes PRIV 1 , PRIV 2 from users backend system.
Can any one explain why this is happening ?