By default, Identity Governance calculates SoD violations for both detected and assigned technical roles. You can choose to calculate SoD violations only for detected roles using the Violation Options tab. Identity Governance automatically removes technical role assignments when authorized administrators resolve SoD violations that were generated during calculation of violations for both detected and assigned technical roles. You can choose to enable or disable automatic removal of technical role assignments when you specify calculation of violations only for detected roles.
To configure SoD Violations Options for Technical Roles:
Log in as a Customer, Global, or Separation of Duties Administrator.
Select Policy > SoD.
On the Violation Options tab, specify whether Identity Governance should calculate violations for detected and assigned technical roles or only detected technical roles.
(Conditional) When specifying SoD violation calculations only for detected technical roles, enable or disable automatic removal of role assignments.