Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How could we make User groups to be able to request for specific applications?

KasperT
New Contributor III
New Contributor III

‎07/24/2023 01:41 AM

We have Application and Entitlement owner user groups and those should be able to request for specific applications for any user with the Request for others feature. 

We are using Access queries in endpoints to limit visibility. We are not able to use requestor and requestee attributes as we are using enhanced catalog. 

Is there a way that we can bypass the Access queries for these user groups or something to make this work?

0 Kudos
6 REPLIES 6

dgandhi
All-Star
All-Star

‎07/24/2023 06:34 AM

What is the query that you are trying?

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.
0 Kudos

KasperT
New Contributor III
New Contributor III
In response to dgandhi

‎07/24/2023 06:56 AM

The query it self is not the issue here and it can be different in different endpoints. We need to bypass it for the group members so they can request for all users regardless if they meet the access query requirements or not. 

0 Kudos

adriencosson
Valued Contributor
Valued Contributor

‎07/24/2023 06:50 AM

Hi @KasperT ,

I had a similar issue. As written in the below post, the "requestor" dynamic variable is not accessible in Access Query unless you set the "Enhanced Application Request" is set to "No".

You can find a working query there.

https://forums.saviynt.com/t5/identity-governance/access-query-restriction-based-on-requestor-sav-ro...

Let us know if you need guidance on how to write the query for user groups.

Regards,
Adrien COSSON
0 Kudos

KasperT
New Contributor III
New Contributor III
In response to adriencosson

‎07/24/2023 06:58 AM

Thanks but this does not help here. As I said in the post we are using the enhanced catalog and I am aware that we can set it to "No" but that does not help with the issue.

0 Kudos

adriencosson
Valued Contributor
Valued Contributor

‎07/24/2023 07:04 AM

@KasperT, Sure I totally understand your issue.

Unfortunately as of now the requestor / requestee dynamic variables are not exposed in Access Query when using Enhanced Application request.

I have brought this up as an idea to Saviynt here that you can upvote  : https://ideas.saviynt.com/ideas/EIC-I-4916 

Regards,
Adrien COSSON
0 Kudos

DixshantValecha
Saviynt Employee
Saviynt Employee

‎07/25/2023 07:16 AM

Hi @KasperT,

 upvote  : https://ideas.saviynt.com/ideas/EIC-I-4916 

 

Copyright © 2024 Khoros, LLC