There are different tasks available for removing a product from a shelf. In the following section, we take the example of a resource to show how to remove a product.
To remove a resource from the Identity Lifecycle shelf
-
In the Manager, select the IT Shop > IT Shop > Identity & Access Lifecycle > Shelf: Identity Lifecycle category.
-
Select the Assign resources task.
-
Remove the resource from Remove assignments.
- Save the changes.
When you remove a product from a shelf, pending requests for the product are closed and approved requests are unsubscribed.
To remove a product from all shelves
-
Select the Remove from all shelves task.
You will find the task on the main data form of the respective product, for example, a resource.
The task immediately removes product assignments to manually configured shelves and shelf templates. Then, the DBQueue Processor removes product assignments to shelves, based on a template definition. All assignments are unsubscribed if the product is part of an assignment request.
Information on bulk processing
If products are added in bulk to the IT Shop by automatic processes, you can specify how many product nodes are created in one DBQueue Processor run in the QER | ITShop | LimitOfNodeCheck configuration parameter. Once this number has been exceeded, the task is closed and queued again in the DBQueue for generating the rest of the product nodes. By default, 500 objects are processed in one run. The number of requests submitted in bulk can be considerably larger than other processes.
Set a lower value if performance issues arise when running the QER-K-OrgAutoChild process task.
A product can be moved to another shelf. If the shelf is in another shop, the system checks whether the request recipient is also a customer in the new shop.
NOTE: Standard products cannot be moved.
To move a product to another shelf
-
In the Manager, select the IT Shop > IT Shop > <shop> > Shelf: <shelf> category.
-
Select an object in the result list.
-
Select the Move to another shelf task.
-
Select the new shelf.
- Click OK.
Detailed information about this topic
A product can be replaced by another product at a specified time. All employees who have requested this product are notified by an email telling them to request a replacement product.
To replace a product with another one
-
In the Manager, select the IT Shop > Service catalog > Hierarchical by service categories > <service category> category.
- OR -
In the Manager, select the IT Shop > Service catalog > Hierarchical by service categories > Singles category.
-
Select the product's service item to replace in the result list.
-
Select the Change product task.
-
Enter the following data:
- Click OK.
Related topics
You can use multi-factor authentication for specific security-critical resource requests, which requires every requester or approver to enter a security code for the request or request approval. Define which products require this authentication in your service items.
Use One Identity Manager One Identity Starling Two-Factor Authentication for multi-factor authentication. The authentication information required is defined in the subparameters under the QER | Person | Starling or the QER | Person | Defender configuration parameter. For detailed information about setting up multi-factor authentication, see the One Identity Manager Authorization and Authentication Guide.
To use multi-factor authentication in the IT Shop
-
Set up multi-factor authentication as described in the One Identity Manager Authorization and Authentication Guide.
-
In the Manager, create service items for the product that can only be requested with multi-factor authentication.
IMPORTANT: An approval cannot be sent by email if multi-factor authentication is configured for the requested product. Approval mails for such requests produce an error message.
For more information about requesting products requiring multi-factor authentication and about canceling products, see the One Identity Manager Web Designer Web Portal User Guide.
Related topics