Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SOD - Create Functions for entitlements with custom attributes

wronzitti
New Contributor
New Contributor

‎09/24/2024 04:51 AM

Hi,

We have a requirement for SOD for a suite of applications that are using a whitelist of allowed combinations of entitlements. 

Based on the value of a custom attribute in the entitlement, the whitelist is checked and validates the allowed combination. We need to perform and validate this at the access request stage.

We're trying to mimic a similar approach with SOD functiontality available in Saviynt. We noticed that SOD functions operates at the entitlement level, but it seems that only using the "entitlement value".

For example, this is a partial whitelist, allowing entitlements with value "Affirmer" to only be able to combined  with entitlements with value "FO", "other", etc. Any other combination not present in this table in not allowed.

 

 

AffirmerBusiness Treasurer
AffirmerFO
AffirmerICFLead
AffirmerOther
AffirmerReadOnly
AffirmerRequester
  
  

We are saving these values in "customattribute21" in each entitlement.

wronzitti_0-1727178459408.png

Is there a supported approach to mimic this SOD approach with Saviynt?

Thanks

 

Labels:
0 Kudos
0 REPLIES 0
Copyright © 2024 Khoros, LLC