Migration: From direct assignments to access packages

Question

Hi all,&nbsp;our company is changing the authorization concept. Moving away from direct assignment to access packages.Finally, we have to resolve any remaining direct assignments if they are not covered by an access package, and get rid of it.&nbsp;The question is: how do I determine direct assignments, or how do I see whether a group has been assigned via an access package or via direct assignment?&nbsp;Audit logs shows a maximum of 1 month. Here you can see this in the following values:Direct assignment: "Initiated by (actor)" =&gt; "UPN"Access Package: "Initiated by (actor)" =&gt; "Azure AD Identity Governance"&nbsp;RegardsViktor

mziemba · Answer

Hi&nbsp;vipfafenHave you found your way out of it?Can you share?&nbsp;

vipfafen · Answer

hi mziemba,I'm still looking for a solution. Did you find something useable?

Forum Discussion

Migration: From direct assignments to access packages

Share

Resources