Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Application Role Configuration queries

Go to solution
Shaik_Silar
New Contributor
New Contributor

‎11/29/2022 04:07 AM

Hi Team

We have a requirement where if we add new entitlement to the existing role it should go notification to the entitlement owner for his approval. Upon his approval only the entitlement should be added to the Application Role. Is it achievable in Saviynt?

0 Kudos
6 REPLIES 6

Go to solution
rushikeshvartak
All-Star
All-Star

‎11/29/2022 04:12 AM

Yes you can use custom assignment block with custom query


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Go to solution
Shaik_Silar
New Contributor
New Contributor
In response to rushikeshvartak

‎11/29/2022 04:23 AM

HI Rushikesh,

To add new entitlement for existing role Can we use the Role Modification Workflow in global config level ? question is if we add the new entitlement for existing role will Saviynt consider that as a Role modification? or we need to modify the existing workflow from security system itself by adding the custom query block?

0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to Shaik_Silar

‎11/29/2022 09:41 AM - edited ‎11/29/2022 09:41 AM

Yes it will be role management workflow

select userkey from entitlement_owners where rank = 1 and entitlement_valuekey in (select distinct ra.accesskey from request_access ra where ra.requestkey=${ARSREQUEST.id} )

rushikeshvartak_0-1669743700934.png


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Go to solution
Shaik_Silar
New Contributor
New Contributor
In response to rushikeshvartak

‎11/30/2022 12:49 AM

Thanks Rushikesh, That works

0 Kudos

Go to solution
Shaik_Silar
New Contributor
New Contributor
In response to rushikeshvartak

‎12/02/2022 03:42 AM

Hi Team,

When we tried adding entitlement navigating to Identity Repository >> roles>>Add entitlement every thing works fine But When we try to add the entitlements to Application Role using Upload Role Associations

Getting the below highlighted message as we see in the knowledge document

Note: If My Uploads feature is enabled, instead of this page, you will be notified that a background job has started to upload roles.

But when we see the roles after some time we don't see any change i.e., No entitlement has been added to the existing role or it has not created any request to go for approval to entitlement owner

Is there a way to check this in the logs ? or Are we missing any config here

Preview file
1 KB
0 Kudos

Go to solution
KirtiAjrot
Saviynt Employee
Saviynt Employee

‎11/29/2022 06:58 AM

Hi @Shaik_Silar ,

Yes you need to map the WF in the Role Modification Workflow in global config level .

Also, if you want to have the approval sent to the Entitlement owner, simply create the workflow using the access approval node and when an entitlement is added to the Role and you send it for approval - it shall by default be routed to the relevant entitlement owner for approval. You could configure your email notifications in the WF as required.

KA
0 Kudos
Copyright © 2024 Khoros, LLC