Hello All,
I am using SAP IDM 7.2, SP8 .
I have scenario where business user assign privilege/role to the user with validfrom and validto date.
example, validfrom = 04.12.2014 or NULL(empty) and validto = 25.12.2014 .
Question 1. When validto date becomes past then role/privilege is expired. Does IDM automatically remove this expired role/privilege from IDM ?
If yes, then what configuration is required to do this as in my IDM system, it does not happen (not even with reconciliation).
Question 2. If answer to question 1 is No then sap standard script "sap_abap_getNameOfAssignedPendingPrivileges" should not fetch expired privileges when provisioning but query used in the script fetches expired privileges resulting in provisioning job getting failed.
Anyone having this issue ?
Regards,
Pradeep