Hi All,
I have a customer requirement, where they want the ability for anyone using the portal to be able to add any other member to any available security group. The catch here is that the approval should come from the manager of the member being added
For example, if we have 3 users in the FIM portal, User1, User2 and User3. Now, say User1 adds User2 and User3 to some group, then an approval should be fired to the managers of User2 and User3 before they are added to the group. I'm guessing the group owner will also need to give his approval, but thats simple enough.
I tried creating an Authorisation activity, seeking approval from the "Delta" workflow parameter, but it only lets me do //Delta/ExplicitMember/Added (or removed), whereas I want to say something like "Seek approval from" [//Delta/ExplicitMember/Added/Manager] - alas, this doesn't work.
I'm guessing I will need some custom WF to do this, and I'm comfortable creating action workflows (using the PowerShell WF activity). However, I'm not sure on how to proceed with this.
This post has the same question http://social.technet.microsoft.com/Forums/en-US/2bb5cea4-146c-4745-aa5d-6668ea9f9ef0/simple-question-on-deltaexplicitmemberadded-lookup-values?forum=ilm2
However, I'm trying to do this using the PowerShell activity worfklow and I'm not sure how EnumerateResources and the like translate into that
Thanks in advance