Re: Provisioning failing when updating users Business Role

Hi Mike ,

Can you please clarify how Master Privilege concept was designed in your Organization . SQL Query mentioned above provided a list of PROFILES or ROLES as OUTPUT , while output should be USER ID or User MSKEYVALUE .

Can you please try below mentioned SQL to extract user with the difference :

SELECT A.mcthismskeyvalue  FROM IDMV_LINK_EXT_ACTIVE A, IDMV_LINK_EXT_ACTIVE B

where

    A.mcothermskeyvalue='PRIV:Replace with SystemID:ONLY'

    AND B.MCOTHERMSKEYVALUE='PRIV:SYSTEM:Replace with SystemID'

    AND A.MCTHISOCNAME='MX_PERSON'

    AND B.MCTHISOCNAME='MX_PERSON' 

    AND A.MCTHISMSKEY=B.MCTHISMSKEY

    AND A.MCTHISMSKEY IS NOT NULL;

Is the design is something like , PRIV:<SYSTEM>:ONLY is added to all Generic ROLES OR PROFILES ? .Above Query will provide Users which has ONLY Privilege assigned & System Privilege missing . As explained by Steffi above , you can write a simple job to do a reconcilation .

Hope it helps ,

Thanks ,

Jerry George