Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Duplicate accountname created for multiple request

WeAreVoid
New Contributor II
New Contributor II

‎03/22/2024 03:44 AM - last edited on ‎03/24/2024 10:59 PM by Community Manager

Hi,

In an application. we are calculating the account name by using dynamic attribute.

and as per the logic. acct name- AZADMIN-count(current accounts)@abc.com

for first user account name would be - AZADMIN-1@abc.com

for second user account name would be - AZADMIN-2@abc.com

 

issue- if two users try to submit the request in ARS at the same time. and both user's session is alive.

then both users will have same account name. ex-

user3 and user4 both will have AZADMIN-3@abc.com

so, one user account will be created and for second user task will get error by stating account already present.

 

is it possible to somehow handle this process?

if multiple request submission session going on same time then dynamic query will generate the distinct accountname for users.

Labels:
0 Kudos
4 REPLIES 4

stalluri
Regular Contributor II
Regular Contributor II

‎03/22/2024 12:21 PM

@WeAreVoid 
Did you try enabling the instant provisioning at SecuritySystem, test it once again, and share your findings?


Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

WeAreVoid
New Contributor II
New Contributor II
In response to stalluri

‎03/23/2024 11:08 AM

What will happen post enable this check?

actually, here issue if two request submitted with same dynamic query account name.

both requests will go to approval process.

but account will be created for the request that has been approved firstly.

and second task will get error. because account already created by first request.

0 Kudos

stalluri
Regular Contributor II
Regular Contributor II
In response to WeAreVoid

‎03/23/2024 01:39 PM


@WeAreVoid 
When you enable instant provisioning, it is not required to run the WSRETRY job or manually provision the request to complete the tasks. You can select the task types that need to be provisioned using instant provisioning configuration and they are accordingly provisioned.

Try updating the query.

The accountnames of the requests are stored in the request_access_attrs table. Please update your query to check the unique value and try incrementing the name. Modify is as per your request.


Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

rushikeshvartak
All-Star
All-Star

‎03/24/2024 07:02 PM

You need to fix your dynamic attribute query to consider used incremental number from request_Access_attrs table.

Or use database function FN https://docs.saviyntcloud.com/bundle/EIC-Admin-v2022x/page/Content/Chapter02-Identity-Repository/Dat... 

Refer https://forums.saviynt.com/t5/identity-governance/quot-username-already-exists-and-its-pending-for-a...


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC