Jaa


Microsoft Identity Manager 2016 SP1 Portal (4.4.1459.0 or Later) - Approval Justification Entry Enhancement

 

Hello folks, David Steadman Here !!

Today with the release of the Microsoft Identity Manager SP1 March 2017 Hotfix 4.4.1459.0, We released a enhancement that we have heard and also I have personally dealt with in the field that the Requestor or Approver has no means to provide Justification upon creating the request or Approving/Rejecting pending request

DISCLAIMER
The Justification attribute cannot be configured as a required attribute in this initial release.  This additional functionality’s being considered for a future version of the product.    Also if using with email notification you can only use Approval / Denied Template Type

Solution

  1. On Portal Configuration Page Enable Justification UI (Administration—>Portal Configuration –> Extended Attributes) Check the Enable Justification UI Boolean. Then perform IIS reset
    image
  2. After that new text area is displayed on membership request dialogs:
    • Justification is added to new attribute in System Schema — [Request/Justification]
      image
    • RCDC update to Create request has a new Itemimage
    • When Joining a Group Request
      image
  3. Now Justification visible upon viewing the request by Approver, RCDC for Request View has to be edited to include [Request/Justification] attribute. More on RCDC can be found hereimage
  4. When Group Owner Approves provides justification on approval or Deny
    • 2017-03-29_7-50-32
    • Then Approval response is then inserted into the Approval object Reason
      • 2017-03-29_7-52-58
  5. To include Justification to email templates, Update the template by using the [//Request/Justification] and [//WorkflowData/Reason] parameters.

We hope you enjoy this enhancement!!

Comments

  • Anonymous
    March 28, 2017
    Is there any way to make the justification required?
    • Anonymous
      March 28, 2017
      Let me check on this for you and I will get back to you. If you don't mind, please send me an email at timmac@microsoft.com just so I remember to get back to you. Thank you.
      • Anonymous
        March 30, 2017
        Hi,I would also like to know if this is possible. I have created default RCDC for Request Create, downloaded default xml and changed Required property to "true". However, field remains un-required (even after IIS reset).
  • Anonymous
    March 30, 2017
    It looks like this will only be available when using Add Member & Join Group pages (via the buttons), but would not be available from within the Edit Group RCDC. Is that correct?