and more in a single search tool across platforms. Read the announcement here. |
01/29/2024 10:27 PM
Hi All,
We are having few SAP applications integrated in our environment.
We want to exclude one entitlement named PUBLIC while removing access as this is generic entitlement and cannot be removed and resulting in error every time.
insufficient privilege: Error while removing access - PUBLIC to account
How this can be achieved?
Regards,
Sanket Bhandhari
01/31/2024 03:34 AM
Hi @SanketBhandhari,
We are checking on your request and we will keep you posted.
01/31/2024 03:48 AM
Hi @SanketBhandhari,
Kindly confirm if PUBLIC is kind of a tcode or a Sap role.
01/31/2024 03:56 AM
Hi Dixshant.
It is HANA Role.
Regards,
Sanket Bhandhari
01/31/2024 09:18 PM
Which connector is used ? ( complete task using enhanced query before wsretry)
02/01/2024 05:50 AM
We are using HANA connector.
( complete task using enhanced query before wsretry) - How?
02/01/2024 06:29 AM
HI Sanket , this depends on how you are removing access ? If users requesting removal then solution could be to exclude the entielement using "Config for Requestable Entitlement in ARS" config in entitlement type.
If you are doing it via rules , then you could write a enhanced query to update arstasks table set status to 3 before wsretry runs for that endpoint. SO you can have a trigger chain job also , first run this update query and then wsretry. It is well documented here - https://docs.saviyntcloud.com/bundle/EIC-Admin-v23x/page/Content/Chapter10-Job-Control-Panel/Job-Cat...
Thanks,
Amit
02/01/2024 12:09 PM
we also had hana connector in remove access json we checked
"${if(task.entitlement_valueKey.customproperty11==null || !(task.entitlement_valueKey.customproperty11.equalsIgnoreCase('DEFAULT'))){\"call revoke_activated_role('\"+task.entitlement_valueKey.entitlement_value+\"','\"+accountName.toUpperCase()+\"')\"} else {'alter user '+accountName+' CLEAR PARAMETER STATEMENT MEMORY LIMIT'}}"],