Saviynt Forums

Hi,

We have a requirement where we need to display Firefighter usage logs to the owner.

I have worked on FFID logs(Accounts) and it works good.

1. Now, as we have the firefighter(Emergency) role or entitlement request requirement, do we know if SWNCMONIINDEX table will get the data and the below query can be used to display logs to the client?

SELECT SUBSTRING_INDEX(AR.JBPMPROCESSINSTANCEID, '.', - 1) AS REQUESTNUMBER, U.USERNAME AS REQUESTOR, SL.USERNAME AS PRIVILEGEDACCOUNT, EP.ENDPOINTNAME AS SYSTEM, AO.OWNERUSERKEY AS USERCONTEXT, LOGTYPE, TCODE, IF(Tcode NOT IN (''), (IF(TCODE NOT IN (SELECT TRIM(SUBSTRING_INDEX(SUBSTRING_INDEX(ATTRIBUTE_VALUE, ',', n.digit + 1), ',', - 1)) val FROM REQUEST_ACCESS_ATTRS RAA INNER JOIN (SELECT 0 digit UNION ALL SELECT 1 UNION ALL SELECT 2 UNION ALL SELECT 3 UNION ALL SELECT 4 UNION ALL SELECT 5 UNION ALL SELECT 6 UNION ALL SELECT 7 UNION ALL SELECT 8 UNION ALL SELECT 9 UNION ALL SELECT 10 UNION ALL SELECT 11 UNION ALL SELECT 12 UNION ALL SELECT 13 UNION ALL SELECT 14 UNION ALL SELECT 15) n ON LENGTH(REPLACE(ATTRIBUTE_VALUE, ',', '')) <= LENGTH(ATTRIBUTE_VALUE) - n.digit WHERE ATTRIBUTE_NAME LIKE 'Tcodes_To_Execute%'), 'YES', 'NO')), '') AS 'TCODE DEVIATION', DATE(SL.STARTDATE) AS LOGSTARTDATE, DATE(SL.ENDDATE) AS LOGENDDATE, DETAILS FROM (SELECT DISTINCT 'TCODE USAGE' AS LOGTYPE, ACC.NAME AS USERNAME, ENTITLEMENT_VALUE AS TCODE, STARTDATE, ENDDATE, CONCAT(CONCAT('USAGE PERIOD: ', USAGE_PERIOD, ' | '), CONCAT('USAGE VALUE: ', USAGEVALUE)) AS DETAILS FROM ACCOUNTS ACC, ENTITLEMENT_USAGE EU, ENTITLEMENT_VALUES EV WHERE ACC.ACCOUNTKEY = EU.ACCOUNTKEY AND EV.ENTITLEMENT_VALUEKEY = EU.ENTITLEMENT_VALUEKEY ) AS SL, request_access RA, ARS_REQUESTS AR, USERS U, ENDPOINTS EP, ACCOUNTS ACC LEFT JOIN accountowners AO ON AO.ACCOUNTKEY = ACC.ACCOUNTKEY WHERE RA.ACCESSTYPE = 8 AND RA.ACCESSKEY = ACC.ACCOUNTKEY AND DATE(RA.STARTDATE) <= DATE(SL.STARTDATE) AND (DATE(SL.ENDDATE) <= RA.ENDDATE OR DATE(SL.ENDDATE) IS NULL OR DATE(SL.ENDDATE) LIKE '') AND RA.REQUESTKEY = AR.REQUESTKEY AND SL.USERNAME = ACC.NAME AND RA.USERKEY = U.USERKEY AND ACC.ENDPOINTKEY = EP.ENDPOINTKEY ORDER BY REQUESTNUMBER DESC;

2. Is it possible to a time limit on the entitlement to be requested?

3. Can we import entitlement owner through SAP Connector?