Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Mandatory attribute for account import using Stored procedure

Abhay_Yadav
New Contributor II
New Contributor II

‎10/16/2024 09:04 AM

Hi All,

We are trying to import account and entitlements using Stored procedure. We are not getting belwo values from stored procedure.

1. Is it possible to hardcode securitysystem, endpoint,entitlementtype in the import XML itself, or is it mandatory to get these from Store procedure.

2. If it's mandatory to get these from stored procedure is there restriction on naming convention?

3. What all columns are mandatory to get the Account and Entitlement and map entitlement to account.

 'XXXXXX' AS securitysystem,
'XXXXXXXX' AS endpoint,
XXXXXXX AS accountName,
XXXXXXXXX AS FirstName,
XXXXXXXXX AS LastName,
'XXXXXXXXX' AS entitlementtype,
XXXXXXXXXX AS entitlementvalue,

Regards,

Abhay Yadav

Labels:
0 Kudos
11 REPLIES 11

NM
Honored Contributor III
Honored Contributor III

‎10/16/2024 09:07 AM - edited ‎10/16/2024 09:08 AM

@Abhay_Yadav yes you can but if using stored procedure it won't work .. you need to get the value.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Abhay_Yadav
New Contributor II
New Contributor II
In response to NM

‎10/16/2024 09:09 AM

Hi @NM ,

Can you please help us in understanding how it can be hardcoded.

Regards

0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to Abhay_Yadav

‎10/16/2024 09:11 AM

@Abhay_Yadav as mentioned above without using stored procedure you can 

Something like 

'role' as entitlementtype.

If stored procedure is the only option then you can't.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

rushikeshvartak
All-Star
All-Star

‎10/16/2024 09:07 AM

1. Is it possible to hardcode securitysystem, endpoint,entitlementtype in the import XML itself, or is it mandatory to get these from Store procedure.

Yes its mandatory to get from stored procedure and you can't hardcode in XML

2. If it's mandatory to get these from stored procedure is there restriction on naming convention?

Yes endpoint /security system name should match with saviynt application 

3. What all columns are mandatory to get the Account and Entitlement and map entitlement to account.

Same as you mentioned 

 'XXXXXX' AS securitysystem,
'XXXXXXXX' AS endpoint,
XXXXXXX AS accountName,
XXXXXXXXX AS FirstName,
XXXXXXXXX AS LastName,
'XXXXXXXXX' AS entitlementtype,
XXXXXXXXXX AS entitlementvalue,


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Abhay_Yadav
New Contributor II
New Contributor II
In response to rushikeshvartak

‎10/16/2024 09:26 AM

Hi @rushikeshvartak , @NM ,

We have below output of the account Stored procedure.

Abhay_Yadav_0-1729095638519.png

 

And below is entitlement store procedure output.

Abhay_Yadav_1-1729095752816.png

In entitlement stored procedure there is hierarchy

 Role Name > Module Category > Module Name > Permission > Permission Setting

What modifications would be required in this to import the entitlement hierarchy and in user stored procedure so that user's entitlement access can be mapped to "Role Name"

Regards,

Abhay Yadav

0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to Abhay_Yadav

‎10/16/2024 09:37 AM - edited ‎10/16/2024 09:43 AM

@Abhay_Yadav , output looks fine .. you can map it to role.

<mapfield saviynt

  <mapfield saviyntproperty="entitlementvalues.entitlementvalue" sourceproperty="RoleName" type="character"/>


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Abhay_Yadav
New Contributor II
New Contributor II
In response to NM

‎10/16/2024 09:48 AM

Hi @NM ,

I meant in the entitlement store procedure do i need to get
'Rolename' as enttype1

'Module Category' as enttype2 

'Module Name' as enttype3
similarly for others

Also in the documentation it has system name and application name as two different things. Is it just a typo or are these actually 2 different things. 

Abhay_Yadav_0-1729097191505.png

Regards,

Abhay Yadav

 

0 Kudos

NM
Honored Contributor III
Honored Contributor III
In response to Abhay_Yadav

‎10/16/2024 09:53 AM

@Abhay_Yadav it depends you have to have them as seperate entitlement type or single(parent and child)


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Abhay_Yadav
New Contributor II
New Contributor II
In response to NM

‎10/16/2024 10:07 AM

Hi @NM ,

As we are getting only "RoleName" information in Account Stored procedure. What would be the best way to display it in saviynt that if user has Access to "RoleName" then saviynt should display full hierarchy based on entitlement stored procedure.

Can you please help me understand how hierarchy for seperate entitlement type can be achieved and how single(parent and child ) hierarchy can be achieved.

Regards,

Abhay Yadav

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Abhay_Yadav

‎10/16/2024 11:08 AM

Above all columns are mandatory if you are bringing entitlement to entitlement mapping. Role to Privilege mapping


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Abhay_Yadav

‎10/16/2024 09:48 AM

You need to have Status as 1/2 in Account result also entitlement type, endpoint , security system is required


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC