and more in a single search tool across platforms. Read the announcement here. |
04/25/2023 02:51 PM - edited 04/25/2023 02:55 PM
Apparently you cannot have the word "alert" in any synced AzureAD entitlement property including entitlement description or customer property (and I think name as well). It will sync the entitlement to Saviynt but then you cannot make updates to it in Saviynt as it will give you an error until the word "alert" is removed. You also cannot perform an entitlement search with the word "alert".
I asked Saviynt support to share the other banned words so we can proactively deal with the issue and they told me to I had to post this question in this forum instead.
Does any one else have the list of banned words for entitlements names, descriptions, other properties? I couldn't locate support documentation around this but maybe I missed it.
04/26/2023 06:06 AM
any scripting language codes should not be used in entitlement description or other field to avoid Cross-site Scripting attack (XSS) issue
04/26/2023 06:29 AM - edited 04/26/2023 10:23 AM
To confirm, we have to change any Azure or AD entitlement that has the word alert (not in quotes) in the name and description?
FWIW I can use the words “update table”, delete, “anything in quotes”, alter, script, etc but alert is prohibited.
What other words are not allowed?