Today I found another issue with Identity Status (User Status) in Oracle Identity Manager, here are the sequence of activities which I performed:
OIM doesn't allow to create new session if Identity Status is Disabled but it must terminate the existing active sessions as well.
- "User A" is logged in into OIM and doing some operations from his/her laptop.
- At the same time, System Administrator logged in into OIM and disable the user or user gets disabled as part of Trusted User Reconciliation.
- Identity Status changed to Disabled on UI as well in User Repository(Database) successfully.
- Still user was able to perform various operations in OIM like request submission for self, others etc. If that user has administrative privileges then he/she can do anything.
OIM doesn't allow to create new session if Identity Status is Disabled but it must terminate the existing active sessions as well.