Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to avoid/exclude Birthright Entitlement in User Manager Campaign

Gopi
Regular Contributor
Regular Contributor

‎02/14/2024 09:35 AM

Hi All,

How I can exclude the entitlement/access in the User Manager Campaign that is assigned as a birthright for the User account?

The requirement is that we should not include birthright entitlement in the review.

Regards,

Gopi.

Labels:
0 Kudos
8 REPLIES 8

Amit_Malik
Valued Contributor II
Valued Contributor II

‎02/14/2024 10:35 AM

HI @Gopi ,

use highlighted config while creating campaign.

AmitM_0-1707935615597.png

And use following columns from account_entitlement1 table that stores source of assignment

AmitM_1-1707935681334.png

 

Hope it helps !!

 

Br - Amit

Please ACCEPT SOLUTION and hit Kudos if it helped.

Kind Regards,
Amit Malik
If this helped you move forward, please click on the "Kudos" button.
If this answers your query, please select "Accept As Solution".
0 Kudos

sai_kanumuri
Honored Contributor
Honored Contributor

‎02/14/2024 11:11 AM

Hi @Gopi 

Please use the below query under Account Entitlements query in the campaign configuration to exclude the birthright entitlements.

Query - ae1.assignedFromRule is null

sai_kanumuri_0-1707937874529.png

https://docs.saviyntcloud.com/bundle/EIC-Admin-v2021x/page/Content/Chapter06-EIC-Configurations/Conf...

 


Regards,
Sai Kanumuri
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

rushikeshvartak
All-Star
All-Star

‎02/14/2024 08:27 PM

Query : ASSIGNEDFROMROLE is null AND ASSIGNEDFROMROLES is null

rushikeshvartak_0-1707971254902.png

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Darshanjain
Saviynt Employee
Saviynt Employee

‎02/15/2024 02:49 AM - edited ‎02/18/2024 02:43 PM

Hi @Gopi 

As Discussed, you need to find the entitlements which are being provisioned from the config entitlements with new account 

 

Thanks

Darshan 

0 Kudos

Gopi
Regular Contributor
Regular Contributor

‎02/17/2024 05:00 PM

Hi @rushikeshvartak , @Amit_Malik , @sai_kanumuri ,

The solution that you provided worked but a few of the entitlements are assigned from the Entitlement With New Account option which is available at Endpoint. 

Is the endpoint table accessible at the campaign?

Regards,

Gopi.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Gopi

‎02/18/2024 07:50 AM

rushikeshvartak_0-1708271435834.png

 

entitlement_Valuekey in (select ENTSWITHNEWACCOUNT from endpoints where endpointkey=30)

https://forums.saviynt.com/t5/identity-governance/exclude-entitlement-from-user-manager-campaign/m-p...


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Gopi
Regular Contributor
Regular Contributor

‎02/27/2024 02:50 AM

Hi @rushikeshvartak , @Darshanjain @sai_kanumuri @Amit_Malik ,

Thanks for all your input.

Now I have one question, In the User Manager campaign it is possible to display child entitlement at step 2?

I have a few BR entitlement provisions under that BR entitlement there are a few child entitlements also.

The observation I see that

When I launch the campaign(without any adv config just for testing purposes) for the AD endpoint I see only parent entitlement in Step 2 but not the child entitlement. Is it expected behavior?

Please provide some info on this.

Regards,

Gopi.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Gopi

‎02/27/2024 09:25 PM - edited ‎02/27/2024 09:26 PM

Child Entitlements will not be visible its expected 

Refer https://forums.saviynt.com/t5/community-knowledge-base/display-child-entitlements-in-campaigns/ta-p/...


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
Copyright © 2024 Khoros, LLC