Click HERE to see how Saviynt Intelligence is transforming the industry. |
10/11/2024 06:23 PM
Hi, our EIC environment version is Saviynt v24.7.
I would like to create an analytic solution with context, but I can't find it in my configuration when I try to create it. Can you suggest how we can retrieve it context tab in analytic config?
should reflect something below
Regards, Arvind
10/11/2024 08:58 PM
Hi @ArvindKumar33 , as per my knowledge context tab is available in run time analytics.
10/12/2024 09:07 AM
This is expected behavior when you create analytics first time it will not be visible. once its created context will be available
10/12/2024 07:58 PM - edited 10/12/2024 08:02 PM
Thanks Rushikesh!
Now when I am updating analytic selecting context as user, it throws below pop-up.
Regards,Arvind
10/13/2024 09:40 PM
These controls provide visibility of control data based on user context. When creating these controls, EIC looks for the user name aliased as USER CONTEXT as the name of a column in the result set. If a user logs in to EIC, only the violations associated with the user's username are displayed in the run history. Users with ROLE_ADMIN and ROLE_READONLY SAV roles are exceptional to this visibility constraint and can view violations of all the users available in EIC.
Sample query
select distinct excv.attributevalue as 'AWS Account', a.name as 'IAM User',u.Firstname as 'First Name', u.lastname as 'Last Name', u.email as 'Email Address', a.Created_on as 'Creation Time',a.LastLogondate as 'Last Login' , u.userkey as 'USERCONTEXT' from accounts a INNER JOIN users u on u.username=a.name and u.customproperty1 IN ('T','R','D') INNER JOIN endpoints ep On ep.endpointkey = a.endpointkey INNER Join entitlement_types et ON et.endpointkey = ep.endpointkey INNER JOIN securitysystems sc ON et.systemkey = sc.systemkey INNER JOIN externalconnection exc on sc.externalconnection = exc.externalconnectionkey INNER JOIN externalconnectiontype exct on exc.externalconnectiontype = exct.externalconnectiontypekey and exct.connectiontype = 'AWS' INNER JOIN externalconnattvalue excv on excv.connectiontype = exc.externalconnectionkey and excv.attributekey = 'AWS_ACCOUNT_ID' where a.name not like 'xyz'
10/13/2024 01:28 AM - edited 10/13/2024 01:29 AM
Hi @ArvindKumar33 ,
Your initial screenshot where the below query used, this works when you are using context, as you are referencing a column USERCONTEXT.
select username, manager as USERCONTEXT from users where statuskey=1
Try to check in your second screenshot query and add USERCONTEXT if missing and then run. You shouldn't see this error.
If this helps, please consider selecting Accept As Solution and hit Kudos
10/14/2024 06:36 AM - last edited on 10/14/2024 10:12 AM by Dave
Thanks Rushikesh, Prem!
The query is working fine now. However, after adding analytics and a dashboard to the SAV role, I am getting an access denied error when trying to access the dashboard from intelligence. I have checked the permissions and everything seems okay. The error I am getting is a 403 on this URL https://xyz.saviyntcloud.com/ECMv6/api/idw/res/file?path=/app/usr/theme.json. Can you please let me know which access or feature needs to be added to the SAV role for this?
Regards,
Arvind
[This post has been edited by a Moderator to remove sensitive information.]
10/14/2024 06:39 AM
What all features and webservices are added in this custom SAV role?
10/14/2024 08:35 AM
10/14/2024 09:54 AM
Please check network logs to find which feature and APIs are having issue and giving 403 error . [Sample Image Below]