Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Access to Endpoints based on SAV Role

sandeepgudipudi
New Contributor III
New Contributor III

‎10/22/2024 08:41 AM

Hi

We have a requirement where we want to show the endpoint if requestor has a particular SAV Role [ROLE_ABC_ENDUSER], but requestor can see All Endpoints 

This is Sav role configuration

 

sandeepgudipudi_0-1729611667261.png

 

Labels:
0 Kudos
11 REPLIES 11

rushikeshvartak
All-Star
All-Star

‎10/22/2024 09:01 AM

  • Instead of sav role use endpoint access query

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III

‎10/22/2024 09:10 AM

I have 10 endpoints and out of 10, only 1 endpoint should be visible to ROLE_ABC_ENDUSER,

here i want to use access query to only 1 endpoint not for remaining endpoints, the rest of the endpoints should be visible to ROLE_XYZ_ENDUSER

0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III
In response to sandeepgudipudi

‎10/22/2024 09:11 AM

Why cant we limit in sav roles?

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to sandeepgudipudi

‎10/22/2024 09:29 AM - edited ‎10/22/2024 09:30 AM

You can implement this with access query

where '${requestor.id}' in (select us.userkey from savroles sv, user_savroles us where sv.rolekey=us.rolekey and sv.rolename in ('ROLE_ABC_ENDUSER'))


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III

‎10/22/2024 06:18 PM

Hi,

I added access query to endpoint, but still it is showing other endpoints also

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to sandeepgudipudi

‎10/22/2024 07:28 PM

You need to add for all endpoints if you want to show use IN else use NOT IN in query


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III

‎10/22/2024 10:27 PM

Why can't we leverage sav role to show endpoints instead of access query

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to sandeepgudipudi

‎10/23/2024 07:20 AM

Sav role is used to show application where as you have multiple permutation some user should be able to visible so you need to use access query


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III
In response to rushikeshvartak

‎10/23/2024 07:22 AM

Can you elaborate what is meant by "Sav role is used to show application"

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to sandeepgudipudi

‎10/23/2024 07:29 AM

Refer https://docs.saviyntcloud.com/bundle/EIC-Admin-v24x/page/Content/Chapter09-SAV-Roles/Creating-and-Ma...


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sandeepgudipudi
New Contributor III
New Contributor III

‎10/23/2024 08:15 AM

Here what is the point of having Organization under Identity Repository, The organization has endpoints{added 1 endpoint},entitlements and users[Added as art of customer name imported from csv] and the same org is added in savrole.

Organizations

Select one or more than one organization that the SAV role assignee user can access.

Show Users in Request Access based on Organizations

Select one or more than one organization to displays the list of users, requesting access to an application based on organizations.

0 Kudos
Copyright © 2024 Khoros, LLC