Hi everyone, I currently struggle with a new issue and I'm quite sure at one point it worked. When a new "Create User Request" is created, somebody needs to approve / decline that request, based on the specified workflow. When I click "Approve" or "R...
Hi Team,We have a requirement where there are set of users who are assigned as Rank 1 and Rank 4 approvers for entitlements. If one user who has approved the request for Rank 1, then the request must be redirected to other users for Rank 4 approval. ...
Hello,We are in the process of setting up the ADSI connector for one of our clients and would appreciate some guidance regarding the ADSI SSL setup.There are three main components involved in this operation:Saviynt EICADSI AgentActive DirectoryFollo...
Hello TeamNeed to send Workflow Rejected Email to the Resource Owner as Usergroup.I have used the below binding varaible in the rejected email,but its working.${com.saviynt.ecm.identitywarehouse.domain.Users.findAllByIdInList(com.saviynt.ecm.identity...
Hi Team,After we followed all the steps to onboard the O365 application, when we try to hit the O365 application running on IIS Server throws the below error. Is this expected behavior or do we get some other messages? Thanks.
Hi all,Hoping to gain some clarification on the EPIC connector. The following is what I found in the Epic connector guide [Using Classic Integration (saviyntcloud.com)]:Using Epic Data for accounts and access importEpic provides exports of EMP and SE...
Currently, I have a target application whose accounts are integrated with AzureAD, but not all Azure AD accounts have access to this target application. In my environment, these target application accounts are grouped in the AzureAD group "X-Team." S...
Hii,I want the implement the use case if request is raise from ARS then bypass the ticketcreation process and if request is raise through birthright rule or user update rule then only ritm will be generate,Kindly suggest the sample json.Currently I u...
Hi,We would like to import two groups based on id using entitlement_filter_json present in AzureAD OOTB connector.Tried using id eq 'abc', but it gives an error message, Invalid entitlement_filter_json.Tried to mention the same in custom access which...
Hi,We are getting the below error when trying to download the file from SFTP location. even if the file is present in the mentioned location, we are getting an error that file is not available in the location. Any suggestions?FILES_TO_GET:[{"eic_dest...
Hi Team,I want to invoke 2 APIS in REST connection json. First API call response will be used in second API to generate token. Kindly share example. NOTE: ITS NOT A REFRESH TOKEN, So cant use refresh JSON Example.NOTE: ITS NOT FOR ACCOUNT IMPORT.
Hi Team - I have an application for which the security system is set as 'EntitlementsOnly' for create task action. This is working as expected but the problem is with the workflow for this security system. The requirement is that if the entitlement r...
Hi, I'm working on a REST integration and have the following Import Account JSON. Previously I was able to run both account and access imports successfully. However, during the account import, I wasn't able to map the corresponding entitlements to t...
Hi Team, Below json body is working fine from postman. However i am getting following errorJSON:{ "login": "ddf@sf.org", "email": "ddf@sf.org", "firstname": "test", "lastname": "test 05", "fullname": "test test 05", "employee-number...
How to generate any new attribute using the existing attribute values?Ex: 1 . I need to generate the "display name" for John Doe as JohnD, how can we do this on saviynt ui?Ex: 2 . Need to generate "full name" using the firstname and lastname which we...
Hello Team,Could you please help us on this. We are facing with an issue where AD child endpoint's entitlements are getting deactivated after the import job runs.
Hi team,We want to restrict the functionality of adding multiple owners while creating or modifying the service account because in Azure AD only one owner is supported. How can we achieve this? If we cannot restrict, we want to reject requests in the...
Hi,We have to integrate with SAP HANA for both reconciliation and provisioning.I came across this documentation to check for connectivity prerequisites : About This Guide (saviyntcloud.com)However, I can only find permissions to grant on the service ...
Can I get links to updated 24.1 documentation for integrations with ServiceNow and AzureAD
How would you write a modifyUserJson, to compute firstName and LastName in Customproperty2
HiFacing issue while deleting a Duo account.FYI...Account creation and updation is working fine.Following is the configuration and error message pulled from logs. Please let me know in case you require any further information.DisableAccountJSON{"call...
Hi everyone, I'm working on implementing our ARS. After now being able to have Logical Apps I'm now wondering, if it is possible to automatically display "Existing Accounts".Setup: 1 Security System for Entra ID (1 Endpoint)1 Security System Logical ...
Hi Team,We are encountering an issue with correlation. Specifically, the correlation is based on users.email=accounts.customproperty5. When a new account is created and synced, it correlates successfully with the user identity. However, when changes ...
Does Saviynt support managing user profile photos? We have business use case where we want to fetch the profile photos from an auth. source and then set the same images in other downstream applications like AD and SNOW but I have not come across any ...
v24.1I have created a new custom topic, associated book and KPIs in the "App Owner" Persona.How do I provide view access to the persona custom topic to a custom SAV Role?Currently members of the custom SAV Role can only view the "Active Directory" to...
We are using STATUS_THRESHOLD_CONFIG where we are trying to mark account as locked or unlocked based on lockouttime. If lockouttime value is 0 then unlock or for any other value locked. But it not working. We have tried only by passing only unlock va...
Hi,Is there a way to disallow special characters in Account Name rule at the endpoint level ?Best Regards,Varun
Hi Saviynt Team,I am facing the issue of achieving uniqueness in CN value. If I am trying to create the user with the same firstname and lastname it's correlating with the same CN value. Can you tell me if there is any error in this or is there any d...
I've got a situation where a customer would like to send the value stored in a customproperty (CP) on a entitlement via update account json, if the user information is updated. This CP stores group mappings and the API used for updating accounts requ...
Hi All,We are trying to update the 'EXCLUSIVE_ACCESS' column of the table 'APPLICATIONTYPE' using enhanced query. We are facing the issue:'Data truncation error: Data too long for column 'EXCLUSIVE_ACCESS'.Below are my observations and understanding:...
Hello Team,I have configured ImportAccountEntJSON , attached with URL etc replaced, and the data for accessImport shows up in logs, but not getting saved to entitlements list, also same way accounts are getting imported but shows only in logs and no...
Hi.In "Request Access for Others", I can request for all endpoint account and entitlement for other users.Can I limit to request for only endpoint that I am assigned as endpoint owner?Best Regards,
Hi,I have 2 Mitigation Controls, One Mitigation Control is for Ruleset1 and other Mitigation Control is for Ruleset2.MC1 -> Ruleset1 -> Owner1MC2 -> Ruleset2 -> Owner2Owner2 is able is view both MC1 and MC2. Is there any configuration that needs to b...
Hi everyone, I wanted to know, how you handle Username generation. RIght now I have th eissue, that subsequent Requests use the same Username, as the "Auto Increment" Feature does not seem to respect In-Flight requests. Any hints how to tackle this? ...
Dear Team,This is in context to the discontinued requests that are not getting deleted from the pending approval list. In the below screenshot, the requests have been discontinued. However, after running the job-" RemoveExpiredRequests" these are sti...
Hi,I have a specific requirement where I'd like to generate 1 ISM ticket (createTicket JSON) per requested entitlement through a single access request entitlement. Is this possible with the product? Or is it possible to have a dynamic call through a ...
Hello,I am trying to run this simple query in Enhanced Query to set the firstremindermailsent column of a campaign to NULL. But, it is failing with the following details:Input Queryselect NULL AS campaign__firstremindermailsent,ID as campaign__PRIMAR...
Hello Saviynt Community,We are encountering an issue with the Delete Security System API in our system. Whenever we attempt to utilize this API, we are consistently receiving a 403 Forbidden status error. We have diligently reviewed the Saviynt logs ...
Hi Team,Two entitlements have the same name, one is active and the other is inactive. We created a technical rule and only one entitlement appeared at the time of selection. However, when it executes it picks the inactive entitlement. Upon checking t...
Greetings,I am working on a REST connection - BASIC Authorization.I am not able to import users/accounts and getting error from the recon job."Failed to import one or more object types. Checkthe Job Log Details page for more information."Can't attach...
Hello,We are doing AD provisioning, under connection create JSON, we tried below condition for samAccountName :"sAMAccountName": "${if(task.accountName.length()<20) {task.accountName} else {task.accountName.substring(task.accountName.length()-2,2)}}"...
Hello all,Is it possible to change gsp role file and put select multivalues fields on the form ? If yes, can u provide me with a gsp example please?
Hi,I'm integrating a REST based application and for that the pagination configurations have to be passed via BODY.All the pagination examples available are ONLY related to configurations passed through Query Params.While searching, I found another po...
Hi,We were able to see memberships for Channel Entitlement Type got imported through the API call but not in the Saviynt.Can someone assist with this issue?
After upgrading to 24.1 in our Dev environment, we have created a test certification and now the email notification is are not sending out at all. Has anyone else experienced this issue? Or perhaps know what the resolution is? 2024-03-10T23:44:58.68...
Scenario: We have to do a one time load of 100 contractors into Workday. They already exist in our Active Directory. How can we make the systemusername in saviynt the same as the AD usernames. In the Workday User Import Job I see the option to disabl...
Hi,I am new in the Saviynt product and have a question. Does Saviynt allow external API script such as postman to request an Access Request?ThanksMark
Hi There,I am facing :- Error in Users Import - Error while processingdata: Column count doesn't match value count atrow 1I am using below in sav file#USER_NOT_IN_FILE_ACTION=NOACTION#FILENAME=contractor#DELIMITER=,#ZERODAYPROVISIONING=TRUE#CHECKRULE...
XML Payload sent to Workday for update user must contain the username/password used in the connection. I am able to provide the connection password but it doesn't like the username.Excerpt of payload: <wsse:Username>' + USERNAME + '</wsse:Username> ...
Hello experts,We are in process of on-boarding EPM connector in EIC. We are able to sucessfully add/remove access from EPM pods, however, we are unable to create account.Could someone please confirm the EPM URL format that needs to be added to connec...
We want your journey here to be as great as can be, so we have put together some links to help you get quickly familiarized with the Saviynt Community.
More Links
User | Count |
---|---|
353 | |
47 | |
34 | |
28 | |
23 |
User | Count |
---|---|
353 | |
46 | |
45 | |
45 | |
22 |