Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Entitlements are getting removed from Enterprise Role through Campaign

AravindK
Regular Contributor
Regular Contributor

‎09/24/2023 11:09 PM

Hi Team,

We have launched the Campaign for enterprise Roles through Role Owner campaign type. We have observed that entitlements are getting removed from the enterprise roles after the expiry of the campaign for unresponded roles(no action peformed by the Role owner)
Ex: If you see the below screenshot, where the role owner did not took any action for the role either belongs to me or does not belongs to me or consult . As per our expectation, for all unresponded items Access will be removed from the accounts level and entitlements will not be removed from the roles .

AravindK_0-1695621784328.png

and we have below setting this enabled in the campaign configuration. 

AravindK_1-1695621953335.png

Please confirm if this is expected behavior or any way to revoke the only access from accounts level for unresponded items.

Thanks,
Aravind
 

0 Kudos
2 REPLIES 2

DaanishJawed
Saviynt Employee
Saviynt Employee

‎09/25/2023 04:17 PM

Hi @AravindK ,

This is the expected behavior. In Role Owner campaign, entitlement will get removed from the role too.

There is no way to remove only access from accounts. Entitlement Owner campaign would be a better option depending on your use-case.

Thanks.

 

0 Kudos

Manu269
All-Star
All-Star

‎09/25/2023 09:00 PM

Role Owner Campaign :

This campaign allows role owners to review the ownership of roles followed by reviewing the users and entitlements associated with those roles. The roles which are inactive or composing status are not included for role owner campaign certifications.

Create Revoke Task for UnResponded Items on Expiry : 

Use this setting to create revoke tasks for unresponded items such as accounts or entitlements once the campaign expires.

  • ON: Enables the certifier to create revoke tasks for unresponded items upon campaign expiration.

  • OFF: Disables the certifier from creating revoke tasks for unresponded items upon campaign expiration.

For your case why don't you try exploring the Entitlement Owner or User Manager Campaign.

User Manager Campaign : Allows a manager to certify the employment status of direct reportees and perform their employment verification and review their base account, access, and roles.

Entitlement Owner Campaign : Allows entitlement owners to review the ownership of entitlements, followed by reviewing accounts associated with those entitlements and associated child entitlements. 

 

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos
Copyright © 2024 Khoros, LLC