Revoke roles using automatic role provisioning
SummaryRevoke roles using automatic role provisioning
Recently for one of our implementations, the requirement was to provide read only roles for employees, line managers and HR admins just to validate the data and configurations. No edit access was provided.
We created automatic role provisioning rules and respective roles were granted to the users.
Now, in some time we have provide edit access also to the users in form of edit enabled employee, line manager and HR admin roles. What is the recommendation to auto provision the newly created edit enabled roles and revoke old read only roles provided.