Hi David,
You understand our issue correctly. Our issue is all requests went through all managers who have Admin role "Department Manager" in user creation workflow. We require that the request go to the correct approval manager (Request from Sales department go to Manager in Sales department).
We tried the following configuration.- Setup OU named Sales and Engineer.
- Setup two Admin Roles named
1. User Manager (Scope with Sales and Engineer OU and assign users salescreator and engineercreator). Users have right to create user in Service Center.
2. Department Manager (Scope with Sales and Engineer OU and assign users salesmanager and engineermanager). Users have right to approve the request.
- Setup user creation workflow in process designer as seen from the below step.
1. User Generation (This activity is using for user creation and assign to user manager role)
2. Approval (This activity is using for approval and assign to department manager role)
3. Execute (This activity is using for execution and assign to operator role)
** Workflow is working fine but the approval request was sent to all managers belonging to Department Manager role.
So, what am i missing from the configuration? or I am thinking about writing a rule that sending the approval request to the correct manager. We try to understand the library from workflow rule but it is quite hard to understand.
Regards,
------------------------------
Chainarong Rujisatiensap
------------------------------
Original Message:
Sent: Mon November 11, 2019 12:41 AM
From: David Edwards
Subject: IGI: How to setup line approval based on user department
Hi,
I'm having problems trying to understand the issue. You setup the approval step to go to the Admin Role of "Department Managers" and the step went to all Department Managers? It sounds like the users associated with the Department Manager admin role have the scope of the entire system, not just specific org units?
The example rules can be found in https://ibm.box.com/v/IGI-Rules-Guide.
------------------------------
David Edwards,
WW Tech Enablement SME for IGA and PAM Products
IBM Security
Original Message:
Sent: Sun November 10, 2019 11:11 PM
From: Chainarong Rujisatiensap
Subject: IGI: How to setup line approval based on user department
Hi David,
We tried from your recommendation but we found that all approval requests sent to all department managers not by hierarchy.
Could you help to provide the sample script to automatically adds/remove users from the role as your mention?
Regards,
------------------------------
Chainarong Rujisatiensap
Original Message:
Sent: Tue November 05, 2019 07:42 PM
From: David Edwards
Subject: IGI: How to setup line approval based on user department
What you have said above will work - setup a Department Manager for each org unit in the tree, and then the manager in the Department Manager role for that department (org unit) will receive the approval request.
You do not need to write a rule, however I have seen rule examples that automatically adds/removes users from the Department Manager role. But it sounds like you plan on doing it manually.
------------------------------
David Edwards,
WW Tech Enablement SME for IGA and PAM Products
IBM Security
Original Message:
Sent: Thu October 31, 2019 01:21 AM
From: Chainarong Rujisatiensap
Subject: IGI: How to setup line approval based on user department
Hi,
I would like to know how to setup line approval in IGI to send to the correct approver based on user department. For example, requestor in Sales Department makes a request and the approval transaction will send to Sales Department manager to approve.
Requestor (Create new user in service center) -> 1st Approval (Department manager of requestor will approve the request) -> Fulfill
Now, I setup 1st Approval in IGI by using Admin Role (Department Manager) and add all managers to the role, so all department manager will receive the approval transactions.
Do I need to write the rule in workflow?
Thanks,
Chainarong R.
------------------------------
Chainarong Rujisatiensap
------------------------------