Click HERE to see how Saviynt Intelligence is transforming the industry. |
11/03/2023 03:19 AM
1.Imported test roles using DB import roles documentation (Configuring the Integration for Importing Roles (saviyntcloud.com))
2.Manually updated the role for endpoint associated and made it requestable
3.Updated the endpoint with request option as table & required as True.
4.able to see the Role in ARS system.
Query is
1.how to attach these Role to an endpoint, while doing import using tags, as I import using configuration in an specific endpoint
2.is there any xml tags which I can use to attach this "application" role explicitly to an endpoint ?
11/07/2023 07:27 PM
Hello @PrashantG,
Can you please share your XML, which you are using for Roles import.
Thanks,
11/07/2023 07:48 PM
This is working XML
<dataMapping>
<sql-query description="This query is to import roles from DB application table" uniquecolumnsascommaseparated="role_name">
<![CDATA[select role_type, role_name, status from mysql_saviynt_dev_db.roles]]>
</sql-query>
<mapper description="This is the mapping field for Saviynt Field name">
<mapfield saviyntproperty="role_name" sourceproperty="role_name" type="character"></mapfield>
<mapfield saviyntproperty="roletype" sourceproperty="role_type" type="number"></mapfield>
<mapfield saviyntproperty="status" sourceproperty="status" type="number"></mapfield>
</mapper>
</dataMapping>
Though tried to add 2 tags ,securitysystem & endpoint but it didn't worked
<dataMapping>
<sql-query description="This query is to import roles from DB application table" uniquecolumnsascommaseparated="role_name" >
<![CDATA[select 'NPC_MySQL_DB_SS' as applicationname,'NPC_MYSQL_DB_App' as endpointname, role_type, role_name, status from mysql_saviynt_dev_db.roles]]>
</sql-query>
<mapper description="This is the mapping field for Saviynt Field name">
<mapfield saviyntproperty="role_name" sourceproperty="role_name" type="character"></mapfield>
<mapfield saviyntproperty="roletype" sourceproperty="role_type" type="number"></mapfield>
<mapfield saviyntproperty="status" sourceproperty="status" type="number"></mapfield>
<mapfield saviyntproperty="securitysystems.systemname" sourceproperty="applicationname" type="character"/>
<mapfield saviyntproperty="endpoints.endpointname" sourceproperty="endpointname" type="character"/>
</mapper>
</dataMapping>
11/07/2023 09:20 PM
Hello @PrashantG,
At the moment, associating the role with the endpoint is not a supported feature. I kindly encourage you to submit an enhancement request through the idea portal.
As an alternative, you may try mapping using the "endpointkey" as a workaround and see it works.
Thank you.
11/17/2023 12:16 AM
Hi Sudesh,
I tired to add endpointKey (got by querying the DB)..but it is failing, as it expects the column in ROLES table.
<dataMapping>
<sql-query description="This query is to import roles from DB application table" uniquecolumnsascommaseparated="role_name" >
<![CDATA[select 'NPC_MySQL_DB_SS' as applicationname,15 as 'endpointkey', role_type, role_name, status from mysql_saviynt_dev_db.roles]]>
</sql-query>
<mapper description="This is the mapping field for Saviynt Field name">
<mapfield saviyntproperty="role_name" sourceproperty="role_name" type="character"></mapfield>
<mapfield saviyntproperty="roletype" sourceproperty="role_type" type="number"></mapfield>
<mapfield saviyntproperty="status" sourceproperty="status" type="number"></mapfield>
<mapfield saviyntproperty="securitysystems.systemname" sourceproperty="applicationname" type="character"/>
<mapfield saviyntproperty="endpoints.endpointkey" sourceproperty="endpointkey" type="character"/>
</mapper>
</dataMapping>
12/03/2023 05:25 PM
endpointkey is working for us
<mapfield saviyntproperty="endpointkey" sourceproperty="endpointkey" type="number"></mapfield>
12/06/2023 07:59 PM
Hi Rushikesh,
yes, the mapfield endpointkey is working, but here as well, I need to provide endpointkey (which is hardcoded, which I queried in the saviynt DB to get the value)....
1.is this the right way.....I mean it should be automatically mapped to an endpoint rather than user providing it, that too he has to first query in the Saviynt DB.....or I am doing incorrectly?
<dataMapping>
<sql-query description="This query is to import roles from DB application table" uniquecolumnsascommaseparated="role_name" >
<![CDATA[select 15 as 'endpointkey', role_type, role_name, status from mysql_saviynt_dev_db.new_roles]]>
</sql-query>
<mapper description="This is the mapping field for Saviynt Field name">
<mapfield saviyntproperty="role_name" sourceproperty="role_name" type="character"></mapfield>
<mapfield saviyntproperty="roletype" sourceproperty="role_type" type="number"></mapfield>
<mapfield saviyntproperty="status" sourceproperty="status" type="number"></mapfield>
<mapfield saviyntproperty="endpointkey" sourceproperty="endpointkey" type="number"/>
</mapper>
</dataMapping>
12/07/2023 09:40 PM
You need to provide in query
11/18/2023 02:20 AM
Hello @PrashantG ,
Thanks for trying it,
As said earlier currently this is not supported would request you to raise the enhancement in the idea portal.
Thanks