Click HERE to see how Saviynt Intelligence is transforming the industry. |
07/01/2024 05:07 AM
Hi Team,
We are trying to import all the roles from the database but job was getting as success but no roles are getting imported not able to find anything in logs as well.
This was the JSON which we are using for the import
<dataMapping>
<sql-query description="This is the Source Database Query">
<![CDATA[SELECT 'Oracle_DB' as applicationname, 'Oracle_DB' as endpointname, 'Role' as attribute, ROLE as Role,1 as status FROM DBA_ROLES WHERE COMMON='NO' ]]>
</sql-query>
<mapper description="This is the mapping field for SAviynt Field name" deleteentitlementowner="false" entnotpresentaction="inactive">
<mapfield saviyntproperty="securitysystems.systemname" sourceproperty="applicationname" type="character"></mapfield>
<mapfield saviyntproperty="endpoints.endpointname" sourceproperty="endpointname" type="character"></mapfield>
<mapfield saviyntproperty="entitlementtypes.entitlementname" sourceproperty="attribute" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.entitlement_value" sourceproperty="Role" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.displayname" sourceproperty="attribute" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.status" sourceproperty="status" type="number"></mapfield>
</mapper>
</dataMapping>
But the same query was running in database.
Can someone let me know if I am missing anything here.
Regards,
Sai Krishna
07/01/2024 06:30 AM
@sk try below article will help full and xml also try it once
https://forums.saviynt.com/t5/identity-governance/rolesimport-for-db-connector/m-p/59298
<dataMapping>
<sql-query description="This is the Source Database Query">
<![CDATA[SELECT 'Oracle_DB' as applicationname, 'Oracle_DB' as endpointname, 'Role' as attribute, ROLE as Role,1 as status FROM DBA_ROLES WHERE COMMON='NO' ]]>
</sql-query>
<mapper description="This is the mapping field for SAviynt Field name" deleteentitlementowner="false" createentitlementtype="true" entnotpresentaction="inactive" systems="'Oracle_DB' ">
<mapfield saviyntproperty="securitysystems.systemname" sourceproperty="applicationname" type="character"></mapfield>
<mapfield saviyntproperty="endpoints.endpointname" sourceproperty="endpointname" type="character"></mapfield>
<mapfield saviyntproperty="entitlementtypes.entitlementname" sourceproperty="attribute" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.entitlement_value" sourceproperty="Role" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.displayname" sourceproperty="attribute" type="character"></mapfield>
<mapfield saviyntproperty="entitlementvalues.status" sourceproperty="status" type="number"></mapfield>
</mapper>
</dataMapping>
07/01/2024 06:35 AM
Make sure you are using "Roles Import (Complete) from Database" Job type and below XML in connection
Sample below
<dataMapping> <sql-query description="This is the Source DB Query" uniquecolumnsascommaseparated="role_name"> <![CDATA[select role_name,description,displayname,sox_critical,sys_critical,roletype,status from roles]]> </sql-query> <mapper description="This is the mapping field for Saviynt Field name"> <mapfield saviyntproperty="role_name" sourceproperty="role_name" type="character"></mapfield> <mapfield saviyntproperty="description" sourceproperty="description" type="character"></mapfield> <mapfield saviyntproperty="displayname" sourceproperty="displayname" type="character"></mapfield> <mapfield saviyntproperty="sox_critical" sourceproperty="sox_critical" type="character"></mapfield> <mapfield saviyntproperty="sys_critical" sourceproperty="sys_critical" type="character"></mapfield> <mapfield saviyntproperty="roletype" sourceproperty="roletype" type="number"></mapfield> <mapfield saviyntproperty="status" sourceproperty="status" type="number"></mapfield> </mapper> </dataMapping>
07/02/2024 12:57 AM
@rushikeshvartak This was the target oracle DB still do we need to run roles import or entitlements import ran both roles import was getting failed and entitlements import does not import anything even though job was successful.
07/02/2024 01:15 AM
@sk can you confirm are need import entitlement or roles?
07/02/2024 02:04 AM
@Raghu From the target end it was stored as Roles please see the screen shot which was executed in sql developer from the target DB.
Thanks,
Sai Krishna
07/02/2024 07:50 PM
roles import . If failed share logs and latest configs