Audit Changes to Dynamic Group Membership Rules through Workflow


I would like to know if it is possible to have a workflow which detects if someone has made a change to the Dynamic Group Membership rules, for example an admin, and that based on that change a notification is sent.


Parents Reply Children
  • Is there no way of tapping  in to that at all? 

    BTW, if you want to mine change history programmatically, take a look at the Quest PoSh cmdlet Get-QARSOperation.  You can filter on operation, object and so on.  Very useful for your use case should you choose to pursue it.

    If you're not handy with PoSh, talk to your Quest / OneIdentity rep about finding an integration Partner to write that bit for you... there are some out there that will take on small tasks like this.