and more in a single search tool across platforms. Read the announcement here. |
10/09/2023 08:35 AM
Hi,
This is with reference to Saviynt EIC environment.
In DEV EIC, we have an option to select Request Access for Others - Mutli Users. Selected users that have ISC_AD account but we get the below error screenshot.
And, can this feature be used for modify , enable and disable scenarios as well?
Thanks
Sapna
10/09/2023 10:36 AM
10/09/2023 10:41 PM
10/09/2023 11:11 PM
Hi Saathvik,
Could you guide on the access query that you are referring to?
Thanks
Sapna
10/10/2023 05:15 AM
10/10/2023 11:19 PM
hi ,
This is the configuration under endpoints
10/09/2023 09:19 PM
Hello @nsapna :
Via Request Access for Other Multi Users tile you can request for:
Creating a new user account for individual users
Providing account access for individual applications
Removing user access from individual accounts
10/15/2023 10:25 PM
10/17/2023 10:22 PM
10/18/2023 08:27 PM
@pdhanure can you check this link and let me know if it helps :
Requesting Access for Multiple Users (saviyntcloud.com)
10/19/2023 06:31 AM - last edited on 10/30/2023 11:22 PM by Sunil
Hi @Manu269 ,
we tried replicating the steps but unable to raise a request, same pop up which was shown earlier is showing. Please find the attached replication steps.
Regards,
Pramod
10/30/2023 08:30 PM
Its seems you have parent child configuration for ENdpoint
check mapped Endpoint config
10/30/2023 08:23 PM
10/30/2023 08:34 PM
@pdhanure Hope you are well.
Upon looking the screenshot, here are few observations :
1. It seems you are requesting EP, ISC AD- Aha but in return it says before having access to that you need to have an access for ISC - AD.
Do you have configured Mapped endpoint in the ISC AD- Aha?
IF yes, then the request it for parent system
11/05/2023 11:23 PM
Thanks for respond team.
Hi Team,
We configured already mapped endpoint requested endpoints, but still asking parent endpoint access.
Thanks,
Raghu
12/12/2023 11:25 AM
Mapped Endpoint specify that you need mapped endpoint (ISC AD) access in order to raise access for child endpoint(Aha!)
12/12/2023 04:36 AM
Hi Team,
any update on this issue?
Regards,
Pramod
12/13/2023 05:07 AM
12/22/2023 02:39 AM
Hi @pdhanure
Does the user have account in the mapped endpoint?
Could you please try this request after having an account in mapped endpoint then raise this request and see if it works.
Please refer the documentation
In some scenarios, there can be a dependency between endpoints. A user can have access to an endpoint1, only if he has access to an endpoint2. For instance, a Google or Gmail account is essential for access to other Google apps.
Using the Mapped Endpoint option, you can associate an endpoint2 belonging to another security system to th endpoint1 in the mapped endpoint tab. It is a way of telling that if the user has an account in endpoint1, then the user can request access for an account in endpoint2. The mapped endpoint provides details of mapped endpoint name and description.
Regards,
Dhruv Sharma
12/26/2023 06:03 PM
In some scenarios, there can be a dependency between endpoints. A user can have access to an endpoint1, only if he has access to an endpoint2. For instance, a Google or Gmail account is essential for access to other Google apps.
Using the Mapped Endpoint option, you can associate an endpoint2 belonging to another security system to th endpoint1 in the mapped endpoint tab. It is a way of telling that if the user has an account in endpoint1, then the user can request access for an account in endpoint2. The mapped endpoint provides details of mapped endpoint name and description.
To map other endpoints to the primary endpoint:
Click Action > Setup Endpoint Mapping.
Select Security System from the drop-down list that has the Endpoint to which you want to map it.
Based on the Security System selected the Endpoint names are populated in Endpoint drop-down list.
Select the respective Endpoint to which you want to map the current endpoint.
To allow the request from the mapped endpoint, select Allow In Request. If you do not want to allow the request from the mapped endpoint, select Do not allow in Request.
Click Save.
To export the mapped endpoint details or Upload Endpoint, click Export under the Action button.
12/26/2023 11:51 PM - last edited on 12/27/2023 12:21 AM by Sunil
Hi,
Followed the above steps and added the application details under Endpoint Configuration
Post changes, getting the same error
[This message has been edited by moderator to mask url]
12/27/2023 12:07 AM
Remove mapped endpoints and try.
note :I have just provided concept of mapped endpoints
12/27/2023 12:18 AM
12/27/2023 12:34 AM
This did not work as well
12/27/2023 12:38 AM
Noticed another thing . This feature is not working for Add Account and Add access but this works for Remove Access
12/27/2023 07:18 AM
Remove access it will work as it check dependencies only during creation. this feature is not supported in multi user requests
12/27/2023 12:31 AM
If we try to remove the endpoint from mapped endpoint, we get the same error message
12/27/2023 02:14 AM
Hi @nsapna
We checked internally regarding this scenario. It is a known limitation and mapped endpoint is not supported in multi-user request. It is also mentioned in the documentation.
The following operations are not supported in multi user requests, but supported in single-user requests:
Copy access functionality
Requesting for modifying the status (Enable and Disable) and state (Lock and Unlock) of your account
Ability to update the end date for an existing access
Cascading for privileges
Endpoint mapping is not available
Requesting for modifying existing access for multiple users
Requesting for application collections
Although it is expected to work fine post removing the mapped endpoint. Could you please crosscheck again and check if the mapped endpoint is removed correctly.
Regards,
Dhruv Sharma