Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enterprise Role Modification Workflow

AnkitaBamania
New Contributor
New Contributor

‎11/17/2023 04:54 AM

Hello Team,

We have a requirement where we need to check if the existing entitlements in Enterprise role belongs to App1 and App2 and when we try to add entitlement from App3 the request should be Auto-Rejected.

We tried to find supporting variables in IF-ELSE condition in Workflow but was not able to find any solution.

Can you help me to find the solution around this?

Regards,

Ankita

Labels:
0 Kudos
7 REPLIES 7

dgandhi
All-Star
All-Star

‎11/17/2023 09:00 AM

Are you talking about adding new entitlement as part of role modification?

 

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.
0 Kudos

AnkitaBamania
New Contributor
New Contributor

‎11/21/2023 07:39 PM

Hi @dgandhi ,

Yes, I am talking of adding new entitlement as part of role modification.

0 Kudos

rushikeshvartak
All-Star
All-Star

‎11/21/2023 08:04 PM - edited ‎11/21/2023 08:05 PM

Use custom assignment block with custom query.

Alternative you can modify gsp to block other endpoints 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

AnkitaBamania
New Contributor
New Contributor

‎11/21/2023 08:08 PM

Hi @rushikeshvartak,

Thank you for the suggestion but is it possible for you to provide some example for custom query to block the entitlements for app3?

Also please help me to understand what is gsp to block other endpoints.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to AnkitaBamania

‎11/21/2023 08:21 PM

Modify below GSP

roles/selectentitlement.gsproles/addentitlementorole.gsp
 

 

QUery :

Use - table roles_historychangelog to find entitlement added in roles

 

Sample query : select distinct ug.USERGROUPKEY from user_groups ug, endpoints ep, roles_historychangelog rhcl where rhcl.FIELDNAME = 'endpointkey' and rhcl.ROLEHISTORYKEY = ra.accesskey and ep.ENDPOINTKEY = rhcl.newvalue and ug.USER_GROUPNAME = ep.CUSTOMPROPERTY33


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

AnkitaBamania
New Contributor
New Contributor

‎11/21/2023 09:09 PM

Hi @rushikeshvartak ,

With custom query block how can we auto-reject the request if entitlements from app3 is added?

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to AnkitaBamania

‎11/21/2023 09:14 PM

You can call custom action block and have jar added to discontinue the request


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC