Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Account Recon job deletes Account Entitlement Mapping

BalajiEpari
New Contributor III
New Contributor III

‎11/30/2023 05:08 AM

Hi Team,

 

We have integrated Saviynt with a LDAP application, Once the account import full job runs, it deletes the Account Entitlement mapping. But during the access import, it properly corelates the account entitlement.

Please let me know, is there any configuration needs to perform?

 

Regards,

Balaji Epari

Labels:
0 Kudos
9 REPLIES 9

pmahalle
All-Star
All-Star

‎11/30/2023 09:27 AM - edited ‎11/30/2023 09:18 PM

Hi @BalajiEpari ,

Can you add below config in CONNECTION CONFIGURATION field of your Endpoint and check once.

{"conf":[{"ADDMEMBERTOENT":"TRUE"},{"ADDUSERTOENT":"TRUE"}]}


Pandharinath Mahalle(Paddy)
If this reply helps your question, please consider selecting Accept As Solution and hit Kudos 🙂
0 Kudos

rushikeshvartak
All-Star
All-Star

‎11/30/2023 09:10 PM

Since you are on 23.8 

{"conf":[{"ADDMEMBERTOENT":"TRUE"},{"ADDUSERTOENT":"TRUE"}]}


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

BalajiEpari
New Contributor III
New Contributor III

‎12/01/2023 06:27 AM

Hi @rushikeshvartak / @pmahalle 

We already added connection config as you mentioned. Still same issue.

There is one difference between our LDAP system and AD/other LDAP systems are member/memberOf attribute will be there in Groups entries instead of Accounts. 

PFB Group entry Screenshot.

BalajiEpari_0-1701440722245.png

Regards,

Balaji Epari

 

 

 

0 Kudos

pmahalle
All-Star
All-Star
In response to BalajiEpari

‎12/01/2023 06:38 AM

Hi @BalajiEpari ,

What's your ENTITLEMENT_ATTRIBUTE value in your connection. Can you add member  as a value and check once.

 

pmahalle_0-1701441458688.png

 


Pandharinath Mahalle(Paddy)
If this reply helps your question, please consider selecting Accept As Solution and hit Kudos 🙂
0 Kudos

BalajiEpari
New Contributor III
New Contributor III
In response to pmahalle

‎12/01/2023 07:09 AM

Hi @pmahalle 

Yes, I have added member for ENTITLEMENT_ATTRIBUTE , so during Access import it properly corelates accounts with entitlement. But once we run the Account import it deletes the existing account-entitlement mappings in Saviynt.

Regards,

Balaji Epari

 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to BalajiEpari

‎12/02/2023 08:23 PM

what is config for status threshold


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

SumathiSomala
All-Star
All-Star

‎12/01/2023 08:18 AM - edited ‎12/01/2023 08:20 AM

@BalajiEpari Could you please refer the trouble shooting guide

Troubleshooting (saviyntcloud.com)

Map the ACCOUNTID attribute with distinguishedName of the account in the ACCOUNT_ATTRIBUTE parameter.

 

If this reply answered your question, please Accept it As Solution to help others who may have a similar problem.

Regards,
Sumathi Somala

If this reply answered your question, please Accept As Solution and give Kudos.

0 Kudos

BalajiEpari
New Contributor III
New Contributor III
In response to SumathiSomala

‎12/01/2023 08:29 AM - edited ‎12/01/2023 08:34 AM

Hi @SumathiSomala 

We already mapped ACCOUNTID with dn in ACCOUNT_ATTRIBUTE. Checking outer Troubleshootings but didn't find any.

Above document is for corelation issue during Access import. which is working fine us.

But during our account import it deletes all existing account-entitlement mappings.

 

Regards,

Balaji Epari

0 Kudos

SumathiSomala
All-Star
All-Star
In response to BalajiEpari

‎12/02/2023 01:52 AM

@BalajiEpari please check the reconciliation field for account and access import. 

Regards,
Sumathi Somala

If this reply answered your question, please Accept As Solution and give Kudos.

0 Kudos
Copyright © 2024 Khoros, LLC