Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Cyberark safe integration

NM
Honored Contributor II
Honored Contributor II

Hi Team,

We have a use case where to add member to a safe in cyberark, we have to first add them into a particular role.

we are not considering role a seperate entitlement type just using a different api when user tries to add a safe(as per current implementation)

As role is licensed based, we can't assign it when we create an account and also other scenario if in case user removes all the entitlement/safe but they are still added to the group.

1) we can use entitlement map option, but the thing is if we check "remove ent" and user raise a request to remove a safe it will create a task to remove the role entitlement and user can't access existing safe in cyberark portal..

2) enhanced query to discontinue the task our client is not inclined towards. Please instant provisioning is enabled..soo no use..

3) Analytics is a option but we wan't to explore other stuff before going ahead with this approach.

4) is there a way we can get the existing entitlement of users in the same json?not using sav for sav.

couldn't find an API which will give me all the safes for a particular user.

Thanks!

[Removed]

Any suggestions on above use case?

[This post has been edited by a Moderator. We discourage the @ mention of other forum users or employees unless they have already involved themselves on the forum post.]

2 REPLIES 2

rushikeshvartak
All-Star
All-Star

 

  • Please elaborate issue with example and screenshot from API/saviynt to understand issue

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

NM
Honored Contributor II
Honored Contributor II

Hi @rushikeshvartak thanks for your response.

There is no issue as such trying to get a suggestion as to how I can handle the above use case(added details in previous  post)..

I have listed down few solutions are those feasible or there any other which I can explore