Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Adding user to AD group should assign them the SAV ROLE

Sivagami
Valued Contributor
Valued Contributor

‎02/16/2024 04:14 AM

Hi Team,

Is there a way where we can add a user to AD group and that controls their access to various SAV roles?

Like controlling the Saviynt Authorization via AD group?

-Siva

Labels:
0 Kudos
6 REPLIES 6

armaanzahir
Valued Contributor
Valued Contributor

‎02/16/2024 05:00 AM

@Sivagami ,

If you do have a sav4sav connection and have imported sav roles as entitlements. You can map the entitlements of AD groups to the SAV Roles, so a dependent task for sav role addition is also generated once the ad group access addition task is generated.

Understanding Entitlement Hierarchy and Entitlement Mapping (saviyntcloud.com)

Alternately, you can utilise and create an actionable analytic to provision sav role access based on ad group access.

Configuring Allowed Actions (saviyntcloud.com)

 

Regards,
Md Armaan Zahir
0 Kudos

sai_kanumuri
Honored Contributor
Honored Contributor

‎02/16/2024 07:13 AM

Hi @Sivagami 

Can you share the complete use case as I am sure you might already be familiar with the Sav4Sav approach?

If this is straightforward, then you should be able to create Sav4Sav Rest connection and import the SavRoles as entitlements with the pre-configured json and map the entitlements to the AD groups.

sai_kanumuri_0-1708096350409.png

 

Regards,
Sai Kanumuri
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Sivagami
Valued Contributor
Valued Contributor

‎02/16/2024 09:37 AM

I think there is a misunderstanding here. I'm not referring to entitlement maps here. 

There are other SaaS apps that can map their roles to a AD group and manage access right. Does Saviynt has such capability? 

-Siva

0 Kudos

jsatish
Regular Contributor
Regular Contributor
In response to Sivagami

‎02/18/2024 06:50 PM

Yes, this is possible via Actionable Analytics. I will try to get you the query

Regards,
SJ

0 Kudos

jsatish
Regular Contributor
Regular Contributor
In response to jsatish

‎02/18/2024 07:57 PM

Or if you have SAV4SAV integration available, you can use the Entitlement Map concept to add SAV Role for the existing AD Groups. 

jsatish_0-1708315011229.png

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Sivagami

‎02/19/2024 06:39 PM

You can achieve using Enterprise roles.


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC