We are delighted to share our new EIC Delivery Methodology for efficiently managing Saviynt Implementations and delivering quick time to value. CLICK HERE.

Enterprise Role Modification Workflow

AnkitaBamania
New Contributor
New Contributor

Hello Team,

We have a requirement where we need to check if the existing entitlements in Enterprise role belongs to App1 and App2 and when we try to add entitlement from App3 the request should be Auto-Rejected.

We tried to find supporting variables in IF-ELSE condition in Workflow but was not able to find any solution.

Can you help me to find the solution around this?

Regards,

Ankita

7 REPLIES 7

dgandhi
All-Star
All-Star

Are you talking about adding new entitlement as part of role modification?

 

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.

AnkitaBamania
New Contributor
New Contributor

Hi @dgandhi ,

Yes, I am talking of adding new entitlement as part of role modification.

rushikeshvartak
All-Star
All-Star

Use custom assignment block with custom query.

Alternative you can modify gsp to block other endpoints 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

AnkitaBamania
New Contributor
New Contributor

Hi @rushikeshvartak,

Thank you for the suggestion but is it possible for you to provide some example for custom query to block the entitlements for app3?

Also please help me to understand what is gsp to block other endpoints.

Modify below GSP

roles/selectentitlement.gsproles/addentitlementorole.gsp
 

 

QUery :

Use - table roles_historychangelog to find entitlement added in roles

 

Sample query : select distinct ug.USERGROUPKEY from user_groups ug, endpoints ep, roles_historychangelog rhcl where rhcl.FIELDNAME = 'endpointkey' and rhcl.ROLEHISTORYKEY = ra.accesskey and ep.ENDPOINTKEY = rhcl.newvalue and ug.USER_GROUPNAME = ep.CUSTOMPROPERTY33


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

AnkitaBamania
New Contributor
New Contributor

Hi @rushikeshvartak ,

With custom query block how can we auto-reject the request if entitlements from app3 is added?

You can call custom action block and have jar added to discontinue the request


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.