Click HERE to see how Saviynt Intelligence is transforming the industry. |
09/04/2024 03:15 AM
Hello community,
We are facing an issue regarding re-correlation operation.
Correlation rules for AzureAD endpoint is:
Current AzureAD Account attributes:
Saviynt User A: AzureAD acccount was correlated in the past. Later, Customproperty29 was cleared and it is set as blank. Email is not equal to customproperty4 of the current AzureAD. They are not matching anymore.
The user A was rehire as a new Saviynt user as Saviynt User B.
Saviynt User B: it is matching the rule for AzureAD correlation:
We have executed the following job for account import:
However, the AzureAD account is not being moved to the new Saviynt User B. It is still correlated to the old Saviynt User A even if the correlation rule does not apply anymore.
Do you know why this is hapenning?
Many thanks in advance.
Kind regards,
Francisco J.
Solved! Go to Solution.
09/04/2024 08:10 AM
09/05/2024 03:55 AM - edited 09/05/2024 03:57 AM
Thanks for your answer!
Do you mean we have to detect by detective analytics the accounts that are linked wrongly to Saviynt users and then perform the mapping 1 by 1 manually using this button (change/remove user in Accounts tab)?
This is quite annoying and risky! Is there not any automatic process to do this? I think Saviynt should have sufficient resources to do that by itself since other Saviynt user is matching the endpoint correlation rule for that account!
Thanks in advance
09/05/2024 04:04 AM
Hi @FranciscoJ yes that is a limitation with saviynt.. you can identify those account and either manually correlate it or manually remove from users when user was deactivated.