Register Sign in Need help? FAQ SailPoint directory
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How manager can revoke access profile access of team member In IdentityNow

How manager can revoke access profile access of team member In IdentityNow

1) Login to SailPoint IdentityNow.

2) Dashboard->Click on My Team.

3) Select team member and go to access profile tab.

4) Select access profile that needs to be revoked and click on 'Request Removal'.

5) Add comments and click on Submit.

6) Once request submitted, success message will be displayed.

7) Line manager receives email notification upon submission of the request.

Navigate to 'Request Center' by clicking on 'Requester Center' menu.

9) Click on My Request.

10) Select the appropriate request title to view more info and to track the request.

Labels (1)
Labels:
Comments
khalilgahbiche
‎Dec 22, 2023 04:02 AM
‎Dec 22, 2023 04:02 AM

Hi @Dushyant1989 ,

Is it possible for a global admin to revole an access profile instead of the manager? Wether from the interface or via an API call.

We have a case where one member of the governance group mistakenly approved an access request, this actions needs to be revoked urgently and the manager isn't available at that time.

Thanks.

Dushyant1989
‎Dec 26, 2023 04:49 PM
‎Dec 26, 2023 04:49 PM

Hi @khalilgahbiche ,

 

There is no other option. Only user Line Manager can revoke access by submitting the request.

Thank you.

Dushyant

khalilgahbiche
‎Jan 11, 2024 10:46 AM
‎Jan 11, 2024 10:46 AM

Hi @Dushyant1989 ,

Crystal clear, thank you.

osmanmohammed
‎Mar 29, 2024 07:04 PM
‎Mar 29, 2024 07:04 PM

How can we revoke a birthright access/license without disabling the birthright and user should not get back again. even its manual revocation.

TheOneAMSheriff
‎Jun 05, 2024 12:26 PM
‎Jun 05, 2024 12:26 PM

@osmanmohammed,

You may try achieving this by modifying the role assignment criteria or the value/identity attribute of the end user matching the criteria. Changing the logic/criteria of the role assignment is risky as other members of the role might also get removed from the role.

As long as the end user match the criteria, the role would be reassigned and access items inside the role would be permitted to the user in the next "identity processing".

Version history
Revision #:
2 of 2
Last update:
‎Feb 23, 2023 05:49 AM
Updated by:
 
View Article History
Contributors