Saviynt Forums

Diptansu11 · ‎11/09/2023

Hello Team ,

We have a requirement to create custom roles for diff team such that they can only perform below task not more than that:

L2 team capability - able to view users but not change it and look at tasks. run the tasks manually. able to look at configs but not edit it ( for connectors). for jobs they can edit
access to RHEL servers
L3 team capability - admin access except no account create, account update, change pwd for service account, Manage Service Account,
L1 team capability : idp MFA Configuration Management, ACCESS REQUEDT RELATED, approvals, create entitlement, password, role access mismatched

Please suggest

Dhruv_S · ‎11/10/2023

Hi @Diptansu11

To achieve these, custom SAV Roles need to be created and can be assigned to L1/L2/L3 teams.

To provide/restrict the access, you can add the corresponding feature access from SAV Role. You can find out of the box feature access for most of the functionalities, but not all of the above-mentioned features will be available.

You can go through the comprehensive list of feature access by navigating to SAV ROLE-> CREATE CUSTOM SAV ROLE (Give details)-> FEATURE ACCESS-> Actions-> Add new access.

Regards,
Dhruv Sharma
If this reply answered your question, please accept it as Solution to help others who may have a similar problem.

Saviynt Forums

Custom role creation asper below criteria need help