This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Automatically assign request and approve policies to all permission in an application

Hi

Is it possible to automatically add request and approve polices to all permissions in a specific application. I though that if I assigned the application to the policy, it would do that, but it seems like I still have to manually assign a request and permission policy to each permission. We have a use case where we want to use IGA to manage RDP access to servers. For each server we have an AD group that is a member of the RDP users of the server. So all that IGA needs to do is to add the user to the AD group.

The issue is that I don't want to have to go into IGA and assign the policies to each newly added server group. We have 1000's of servers and the rate of change is quite high.

Is this possible and if so - how do I do this ?

Thanx

  • 0

    We are on IGA 3.7.3

  • 0  

    I don't think this is possible in version 3.   You could potentially use an insight query or a metric to help identify when there is an appropriate group that is not part of your policy, and then send a notification to an admin to go fix it.   You could also potentially write a script that uses some API calls to evaluate your latest snapshot, check the list of groups that are appropriate, then reconcile against the policy and make additions/removals as necessary.   However, at the moment, I don't think the tool will manage the policy membership for you.

    --Jim