Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Actionable Email Template

narayandas
New Contributor
New Contributor

Hello Team,

We are configuring Actionable email templates in Workflow. Once we submit the request the manager is able to receive email and he can perform the action approved/rejected.

narayandas_0-1725274826659.png

But once we run IncomingMailARSJob, the status we are getting as failure. No pending task is getting generated.

narayandas_1-1725274900541.png

Please check the template.

 

 

<div>
  <p>Dear ${assignee.firstname} ${assignee.lastname},<br /><br /> The user ${user.firstname} ${user.lastname} has
    requested for the following access:<br><br> UserName : ${user.firstname} ${user.lastname}<br />Account Name :
    ${accounts.name}<br />Application Name : ${endpoints}<br /><span>Entitlement Name :
      ${entitlementshtmltablerows}<br />Job Title : ${user.title}<br />Functional Group :
      ${user.customproperty15}<br /><br /></span>Please provide your approval for the same.
  <p><br /><br /> <a
      style="font-size: 16px; font-family: HelveticaArialsans-serif; color: #ffffff; text-decoration: none; border-radius: 3px; -webkit-border-radius: 3px; -moz-border-radius: 3px; background-color: #009900; border-top: 12px solid #009900; border-bottom: 12px solid #009900; border-right: 18px solid #009900; border-left: 18px solid #009900; display: inline-block;"
      href="mailto:saviynt_smtp@example.com?subject=ARS_${request.id}_APPROVED_${request.uuid}" target="blank"
      rel="noopener">Approve</a> OR <a
      style="font-size: 16px; font-family: HelveticaArialsans-serif; color: #ffffff; text-decoration: none; border-radius: 3px; -webkit-border-radius: 3px; -moz-border-radius: 3px; background-color: #ff0000; border-top: 12px solid #FF0000; border-bottom: 12px solid #FF0000; border-right: 18px solid #FF0000; border-left: 18px solid #FF0000; display: inline-block;"
      href="mailto:saviynt_smtp@example.com?subject=ARS_${request.id}_REJECT_${request.uuid}" target="_blank"
      rel="noopener">Reject</a> <br /><br /></p>
</div>

 

 

Thanks,
Narayan Das

7 REPLIES 7

indra_hema_95
Regular Contributor III
Regular Contributor III

@narayandas Can you check the logs and share it.

Regards,

Indra

rushikeshvartak
All-Star
All-Star

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Apology for the mistake @rushikeshvartak .
We have run that IncomingMailARSJob,  where the status is Failure.

and also you can check our SMTP configuration.

narayandas_0-1725347734842.pngnarayandas_1-1725347743199.png

@indra_hema_95 , Here are the Logs:

LogsforSMTP_Email.png

Could you please tell me what we are missing?


Thanks,
Narayan Das

 

  • Do you see email in approval mailbox as unread ?
  • and folder name should be in capital INBOX

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Hi @rushikeshvartak ,
I have changed the folder name in capital INBOX.
Still, we are gatting the same error.

Please check the logs.

narayandas_0-1725369168979.png

and about the approval mailbox, we don't have permission.

Thanks,
Narayan Das

Please check in mailbox also error is 403 indicates that the server understood the request but refused to process it. Its issue with account access


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

stalluri
Valued Contributor II
Valued Contributor II

@narayandas 
This is related to permission to read the email which we sent back. 

Permissions for Actionable Email :

Assign the required permissions in Azure AD by following the steps mentioned in above section. The following permissions are required for reading emails.

  • Mail.Read

  • Mail.ReadBasic

  • Mail.ReadBasic.All

  • Mail.ReadWrite

  • Mail.Send

Permissions for Sending Emails

In the Enable Access pane, use one of the following options:

  • Application permissions: If you want the application to access the data without a signed-in user, you can configure application permissions. Under the Application permissions category, select Read directory data.

    Additionally, set the following permissions for Application permissions:

    • User.ReadBasic.All

    • Mail.Send

  • Delegated permissions: If you want the application to access the data on behalf of a signed-in user, you can configure delegated permissions. Under the Delegated permissions category, select the following permissions:

    • Mail.Send

    • Directory.AccessAsUser.All

Grant the admin consent for each permission.




Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.