In ISIM, I want to prevent administrators restoring accounts which belong to an inactive person. If the process requester is system or workflow engine it will be accepted. In order to do this I put a control in Account entity type. I'm checking if the process.requestorType is "U". It works for single account restore operations. But, if the admin tries to restore multiple accounts of the inactive person, the process is done by System instead of the original requestor. So, the control is not working. For this case requestorType becomes "S" when the restore account is processed.
How can we catch the requestor user in the account restore operation in case of multiple accounts selected to process?
Or, is there another way to accomplish the purpose?
Thanks
------------------------------
Hakan Aydin
Security Engineer
Prime Therapeutics
------------------------------