[midPoint] Role assignment dependent on another role/account

Alcides Carlos de Moraes Neto alcides.neto at gmail.com
Fri Jul 7 00:27:42 CEST 2017 

Thank you Nicolas,

With <orderConstraint>, I'm able to induce Role Y only to, say, managers of
Role X, correct?
I would have to configure all dependent roles with this inducement
configuration.

Can I use any other fields to filter, or just relation? I don't want to
make these users managers of Role X, just to give them Role Y.



2017-07-06 16:25 GMT-03:00 Nicolas Rossi <nrossi at identicum.com>:

> Hi Alcides, Have you tried the <order> sentence on the inducement
> definition ?
>
> https://wiki.evolveum.com/display/midPoint/Roles,+Metaroles+and+Generic+
> Synchronization
>
> Hope it helps, regards
>
>
>
> Ing Nicolás Rossi
> Identicum S.A.
> Jorge Newbery 3226
> Tel: +54 (11) 4552-3050 <+54%2011%204552-3050>
> www.identicum.com
>
> On Thu, Jul 6, 2017 at 4:13 PM, Alcides Carlos de Moraes Neto <
> alcides.neto at gmail.com> wrote:
>
>> Hello list,
>>
>> We have this scenario, where we would like to manually give some user an
>> assignment to Role Y, based on him having Role X, that is assigned
>> automatically from Resource + Template.
>> Once user loses Role X, he should also lose Role Y.
>>
>> We cannot just induce Role Y from X, Role Y is a case by case thing, and
>> should be given manually. We just want it removed automatically once Role X
>> is gone.
>>
>> Right now we're considering creating multiple Role Xs for each user, but
>> that will generate one role for each user (hence Role Explosion).
>>
>> I'm new to midpoint, but have been studying the docs extensively and
>> experimenting. I have not yet  figured if there is a way to do this. Anyone?
>>
>> Thanks.
>>
>> _______________________________________________
>> midPoint mailing list
>> midPoint at lists.evolveum.com
>> http://lists.evolveum.com/mailman/listinfo/midpoint
>>
>>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170706/34f3c940/attachment.htm>

More information about the midPoint mailing list