Click HERE to see how Saviynt Intelligence is transforming the industry. |
10/22/2024 08:41 AM
Hi
We have a requirement where we want to show the endpoint if requestor has a particular SAV Role [ROLE_ABC_ENDUSER], but requestor can see All Endpoints
This is Sav role configuration
10/22/2024 09:01 AM
10/22/2024 09:10 AM
I have 10 endpoints and out of 10, only 1 endpoint should be visible to ROLE_ABC_ENDUSER,
here i want to use access query to only 1 endpoint not for remaining endpoints, the rest of the endpoints should be visible to ROLE_XYZ_ENDUSER
10/22/2024 09:11 AM
Why cant we limit in sav roles?
10/22/2024 09:29 AM - edited 10/22/2024 09:30 AM
You can implement this with access query
where '${requestor.id}' in (select us.userkey from savroles sv, user_savroles us where sv.rolekey=us.rolekey and sv.rolename in ('ROLE_ABC_ENDUSER'))
10/22/2024 06:18 PM
Hi,
I added access query to endpoint, but still it is showing other endpoints also
10/22/2024 07:28 PM
You need to add for all endpoints if you want to show use IN else use NOT IN in query
10/22/2024 10:27 PM
Why can't we leverage sav role to show endpoints instead of access query
10/23/2024 07:20 AM
Sav role is used to show application where as you have multiple permutation some user should be able to visible so you need to use access query
10/23/2024 07:22 AM
Can you elaborate what is meant by "Sav role is used to show application"
10/23/2024 07:29 AM
10/23/2024 08:15 AM
Here what is the point of having Organization under Identity Repository, The organization has endpoints{added 1 endpoint},entitlements and users[Added as art of customer name imported from csv] and the same org is added in savrole.
Organizations | Select one or more than one organization that the SAV role assignee user can access. |
Show Users in Request Access based on Organizations | Select one or more than one organization to displays the list of users, requesting access to an application based on organizations. |