Hi,We have a requirement to add ROLE_SAV_MANAGER to all the managers and from the source no flag is set up to distinguish manager. We have to identify it from users manager field. Is ROLE_SAV_MANAGER assign to managers by default or any settings is a...
Hi,We are creating a clickable analytics dashboard for managers to show the reportee detail who has a particular customproperty null. The dashboard is created but when manager clicked on it, showing error- access denied. (with SAV role admin it is ac...
Hi,I am trying to assign a specific SAVRole through a user update rule. Below is the user update rule.The rule ran but the SAVRole was not assigned. Please can you help me address this issue.
Hi,I want to add "user update" access to a SAVROLE. User of the savrole should be able to edit/update user details from UI. I have added almost all the user related access and requestmaps but still it doesn't work. I get below error.We are on 5.5 SP...
Does the "Create Request Home Option" tab do anything in EIC? As best I can tell, it doesn't matter what is and is not checked in there. Tiles populate based on feature access. And even then, I still get some tiles that cannot be removed and take me ...
Hi everyoneWe have to create a SAV role in order to allow some user to access in read only the Identity Repository folder in the admin page (in particular they have to see information related to user and accounts). While for the user page everything ...
I am trying to create a handful of custom Sav roles that align to how my organization uses Saviynt. I want to be able to grant some users temporary access to action requests from the list view. From what I understand, you can't stack roles with confl...
How long does it take changes to push through once changed in the sav role? Part of the struggle with trying to build roles and testing them is how hit-or-miss changes have been on flowing through. Sometimes I only need to refresh my browser, sometim...
I am trying to create a handful of custom Sav roles that align to how my organization uses Saviynt. I have been unable to get identity repository items to display correctly. I want to be able to grant read-only access to entitlements and accounts for...
Hello! We have configured Sav4Sav using a DB connector. Everything is all set except the status of the account as "Manually Provisioned". Same when the user got offboarded "Manually Suspended". Any idea how to resolve it? I checked the log after onbo...
Hi, We have a case where its possible to create a delegate parent user from Admin Users. Does saviynt have an access control that can be used to limit/deny the Admin user from being used as parent users in delegate scenario? Does such a feature exi...
Hi,I have created a new savrole to provide limited access to users.User is able to see users tab under Admin section. user detail is visible and accounts list is also visible. The issue is when user clicks on any account it gives "Access denied" erro...
Hi, Our client has various enhancements requests while managing SOD's and mitigations, are any of these currently possible: 1. They would like to be able to apply a filter on the mitigating controls screen based on the country the mitigating control...
Hello,I would like to what access should an API user have to view/update user and update account and password for endpoint in Saviynt? Couldn't find detailed info on thisThanks.
Hi, I have created a new SAV ROLE and wanted to enable pending tasks where user can see all the pending and completed tasks. With the below configs user can see only tasks created for himself and not for all. Can you please suggest what more can be a...
Hi All,We would like to show only external users in the user list available under the "update user request" tab. however, all users should be visible under "Request Access for Others" tab.Currently, I am using SAV role to achieve this and Created two...
We have created a custom SAV Role in Saviynt. We want to be able to view Pending Tasks and Completed Tasks as part of the SAV Role but we are unable to do so. We have added all the Feature and Web Service Access but we are still unable to view the ta...
We have created a SAVROLE and given it access to the webservice - fetchRuntimeControlsDataThis gives access to execute all the V1 runtime analytics for the user assigned to this SAV role. How can I restrict the user from accessing only few V1 runtime...
Hi, Can someone let me know hoe to use Datasets in SAV4SAV Rest connection? We can use sql queries in SAV4SAV DB Connection in user import. However, since SAV4SAV DB is deprecated, we need to replicate the same in SAV4SAVREST connector in JSON format...
Hi,After the recent saviynt version upgrade from 5.5SP3.9 to 5.5SP3.13, we are getting 403 forbidden error while calling few native Rest APIs.We tried searching if these webservices access are already assigned or available for assignment but couldn't...
Currently using v5.5 sp3We have a SAV_Role that want to grant certain users to have access to ALL the analytics and the run history, but we seem to be missing something. The users can see all the analytics and can open them, but they get an error whe...
Hi Team,We have a SAV role created for application team and provided access to view all the requests associated with the endpoints they own.The HQL used in the advanced query is below select a from Endpoints a where a.id in (1,2,3,4,5,6,7,8,9,10) Re...
HI, We have a requirement to create a new SAV Role which will be used in custom jar to call different webservice APIs. We created a new role and in access request provided almost all WEBSERVICES available. On checking it seems all the APIs are workin...
hi Team,1. we created a Custom SAV role , Trying to add advanced query with logged in user as dynamic variable"select a from Users a where a.title='Manager' and a.manager=${users.id}" but its retruning results as "select a from Users a where a.title=...
Hi Team,For a specific SAV role users, we want to provide access to specific category analytics reports. Currently we are adding the reports each time to the SAV role for them to gain access & every time manual intervention is needed to update their ...
Hi All,Can anyone help to assign SAV ROLE (READ ONLY) to end user to access only Users and Analytics Module. Need to know what access modules we should add to that SAV ROLE.@rushikeshvartak Thanks,Harish
Hi Team,We have created a custom SAV role with below mentioned feature access, getting access denied screen while view users profile.Could you please let me know is there any feature access are we missed to add.Thanks & Regards,Yogaraj K
Hi all The situation is this. We have created a user form both for creation and update. The form for the creation of a user is designed only for fixed-term contract employee while the update for everyone. During the process for the creation of a new...
Hi,The Notify Certifier email isn't working and we get the following error:No such property: attestations for class.Although if we see freshdesk, we have exactly used the same binding variables as mentioned in the doc below:Link for reference : https...
Hi,So we have a different type of user (Customer/Supplier) whose email needs to be generated in a particular way, however when we include it in the email generation query under global configuration it throws the following exception:Query : case when ...
Hi Team, Following is the requirement, please let us know how we can achieve this. - Create an endpoint called ‘Saviynt Roles’ to request all the SAV roles in MyAccess - Create a Certification template to review ‘Saviynt Roles’ endpoint>Reviewed by ...
Hi,We have a requirement on updating user email on their change of company and need a logic or a workaround for the same.We have around 82 companies at the moment of which 77 companies have the same email domain, except the leftover 5 companies which...
Hi Team, We have 2 kinds of employees PERMANENT and EXTERNALWe created a role called "ROLE _MANAGER"We want to restrict this manager role " Whom to Request " to only external accounts for whom the request is a manager This is the query we are using...
Hi,We have recently seen a weird behavior with update user form. The update user form which was originally generating the request number on submission is no more generating the same. Also, we cannot see it in the Pending approvals queue.Could there b...
Hi Team We have SAV role called: "ROLE_ADMIN_READ_ONLY" We provided the below access so that the admin can see all user details by going ADMIN>Identity Repository>Users But when the admin clicks on the "Update History" Tab of user,it is throwing...
Hi all,As a new Saviynt customer, we are still trying to figure out the tool, and are eager to learn. Because of this, we are also trying out different things, and thus running into multiple challenges. Most of them we can handle with the training vi...
Hi,We are trying to provision Azure Security groups via graph api and distribution groups via powershell within the same connector.We have used a rest connector and have written the following condition in Add Access JSON as below:When we provision a ...
Hi Team,We are looking to allow a certain SAV role to modify existing service account.We have granted the Privilege Service account permission but users with this role can only add to cart and does not get the modify existing account icon.So far we c...
Hi,We need to disable Exchange account for a user on termination. However, that is triggered via powershell script for license disablement on exchange.We are able to pass the http params via update account json, which includes the username of the use...
Hi,We are facing an issue where Manager & other SAV roles are not being assigned automatically, where as End user SAV role being assigned all the time. Created a simple technical rule to assign manager SAV role if user statuskey is 1. But the rule is...
We are trying to assign assign DAM Sav Role for users who are part of certail entitlements in AD. We are trying to use below query but not able to fetch data. Can you assist on appropriate way to provision Sav role automatically when certail entitlem...
Hi,We have a requirement to generate usernames in sequential numbers for various categories of users created via Created User Form.We have five categories of user, of which 4 categories of users we are generating Category Code (from dynamic attribute...
Hi,We have created Shared Mailboxes on a hybrid environment, where the shared mailboxes could be reconciled via AD reconciliation. However, we cannot see the delegates who are part of those Shared Mailboxes in AD.Is there a way to reconcile the deleg...
Hi,I am trying to populate a field of users where multiple email users could be selected from the system in the dynamic attribute of a create users form.I am using Attribute Type as : Multiple select from SQL QueryValues : select email as ID from use...
Hi,We have around 18000 departments which we wish to populate in a dropdown in the create user form from a dataset table that we have imported.However, dataset gives us a threshold of only 10k lines of entries.Any workarounds for this use case?Can we...
Hi Team,We are restricting the user attributes based on the SAV role (ROLE_A, ROLE_H,ROLE_M)Parent attribute: Email required?(YES,NO)And it's Child attribute:- O365 License? ("E1","E3")I'm not sure if it something issue with the versionI could able t...
Hi Team,We have created a custom SAV Role for API that have all the web service access. But when we try to call the API from postman it is throwing an error below screenshot for your reference.Note: It is working as expected I tried with other users ...
Hi,We are trying to create exchange mailboxes on a hybrid environment. We also have the script at a location with logging included. However, the create account JSON is throwing error. Can someone please validate if I am passing the file path and the ...
v2021.0Is there any configuration under sav role to show only team member manager managed vs all employee ?Using below query it does not segregatehttps://docs.saviyntcloud.com/bundle/EIC-Admin-v2022x/page/Content/Chapter09-SAV-Roles/Understanding-the...
Hi TeamI created a new SAV role "ROLE_MANAGER" by using UI.We have the connection: SaviyntForSaviyntI want to add this new role "ROLE_MANAGER" to"Conn_Saviynt4Saviynt" endpoint's Entitlement Type "SAVRole" so that manager can request it from ARSCan T...
