Hi, with IDM 4.0.2 is it possible?

I want to create for an external service a dedicated user able to start
only a specific workflow. I read inside the forum / coolsolutions that
you have to grant the Provisioning Administrator Role to start any WF
from outside userapp.

Now, the problem is that if I give to a user this Role, he can start any
WF defined inside userapp. I need to limit his rights but even if I
remove eDirectory trustee for the Proviioning Administrator user I
specified, he can still manage any WF.

Being a Provisionin Administrator seems to bypass eDirectory security
(maybe via a Specific security equals)...

Anyone can explain me a tricky way to achieve my goal?

Thanks in advance,


nsanson's Profile: https://forums.netiq.com/member.php?userid=362
View this thread: https://forums.netiq.com/showthread.php?t=48182