Click HERE to see how Saviynt Intelligence is transforming the industry. |
09/18/2024 06:42 AM
I am currently going through the Saviynt documentation and found these features. Can anyone point out the key differences between these three. I know that the associated Entitlement doesn't create a task directly assigns the access
09/18/2024 07:09 AM
09/18/2024 07:12 AM
@Subrahmanyam
Associated Entitlement:
I have added an entitlement Y from Endpoint B as Associated Entitlement to Entitlement X in Endpoint A.
So when a user requests for Entitlement X from endpoint A, entitlement Y from endpoint B should also be assigned to the user.
Note: Please refer to Adding Associated Entitlement section of https://docs.saviyntcloud.com/bundle/EIC-Admin-v23x/page/Content/Chapter02-Identity-Repository/Viewi...
Associated entitlement is also assigned to the user however the tasks will not be visible on the UI. Once the provisioning job runs, the associated entitlements also should be assigned to the user. If you want a task to be created, please use 'Entitlement Map' feature in the Other Entitlement Details. You have configs to enable tasks creations, approvals etc.
Entitlement Map:
Do the entitlements in secondary endpoint need to be granted to user because user has entitlements in primary endpoint?
-> For above scenario, we can add the secondary endpoint's entitlements in the Entitlement Map section of the Primary Endpoint's entitlement show page. (This is used if the mapping is with two separate endpoint entitlements.)
Note: Other entitlement is also assigned to the user however the tasks will be created on the UI. Once the provisioning job runs, the other entitlements also should be assigned based on the SS config of the secondary endpoint entitlement.
Child Entitlement:
This is used for the entitlements from the same endpoint. If you have a parent to child mapping in the target to get the same association we will add them in the child entitlement mapping.