We are delighted to share our new EIC Delivery Methodology for efficiently managing Saviynt Implementations and delivering quick time to value. CLICK HERE.

Deprovisioning via user update rule

Soumyaprateek
New Contributor III
New Contributor III

We have a requirement for leaver scenario like -Removes account from all security distribution groups except for Azure AD licenses along with others like- Disable Saviynt user identity, -Remove all access, groups. We are trying to implement it through user update rule but for the exception case of Azure AD licenses we are not sure how to proceed. Any information regarding this is highly appreciated.

Regards,

Soumya Muni

2 REPLIES 2

Darshanjain
Saviynt Employee
Saviynt Employee

There is no direct way from user update rule but you can explore the actionable analytics option for that specific endpoint to create tasks only for specific entitlement types

prasannta
Saviynt Employee
Saviynt Employee

From User Update rule, you can only deprovision accounts and access for an endpoint. There is no way to exclude certain entitlements. But you can use actionable analytics report to revoke only certain entitlements. Please refer below link:

https://docs.saviyntcloud.com/bundle/SSM-Admin-v55x/page/Content/Chapter16-SSM-Analytics/Creating-Ac...