Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Need to show user owned applications in 'Notify as an email'

Go to solution
shivmano
Regular Contributor III
Regular Contributor III

‎04/11/2023 12:51 AM

Hi Team - 

We have a scenario where we need to trigger an email notification to user from 'User update rule' and specify the list of endpoints the user owns in the email template. Can someone please let me know if there is any variable to pull the list of endpoints to which the user has access to? 

 

Thank you

Labels:
0 Kudos
4 REPLIES 4

Go to solution
nimitdave
Saviynt Employee
Saviynt Employee

‎04/11/2023 01:20 AM

Notify as an email does not have any variable for endpoints owned by user.

Alternative you can explore task complete email or analytics to send such notifications.

Task complete email will be for each end point while analytics you can try for all endpoints owned by the newly onboarded user.

Go to solution
shivmano
Regular Contributor III
Regular Contributor III

‎04/11/2023 01:57 AM

@nimitdave , Can I use analytics query to check if a particular rule has been triggered for a specific user and then select the endpoints he owns accordingly? The effort here is to inform user which of his access will be affected before we remove it as the rule gets triggered 

adding this at the rule level should be something that needs to be added as an enhancement feature. If I need to disable user accounts from a rule and inform the user about the endpoints that will be affected before the remove account tasks are created, then being able to pull the endpoint objects that user owns at the rule level is more convenient. 

 

0 Kudos

Go to solution
nimitdave
Saviynt Employee
Saviynt Employee

‎04/24/2023 10:07 PM

Yes you can query userrulerundata_archive table to fetch the details for rule executed for a user.

SELECT URR.USERRULERUNDATA_ARCHIVEKEY AS USERRULERUNDATAKEY , URR.USERKEY AS USERKEY , URR.JOBGROUP AS JOBGROUP ,
URR.CHANGEMAP AS CHANGEMAP , URR.RULETYPE AS RULETYPE , URR.DETECTIVE AS DETECTIVE ,URR.BIRTHRIGHT AS BIRTHRIGHT , URR.PROCESSED AS PROCESSED , URR.COMMENTS AS COMMENTS ,URR.JOBID AS JOBID , URR.PARENTJOBID AS PARENTJOBID , URR.UPDATEDATE AS UPDATEDATE ,URR.EVENTSOURCE AS EVENTSOURCE ,URR.NEWDATA AS NEWDATA, URR.OLDDATA AS OLDDATA ,URR.RULEACTIONFAILED AS RULEACTIONFAILED, URR.RULEACTIONSUCCESSFUL AS RULEACTIONSUCCESSFUL ,
URR.RULEACTIONTOBEFIRED AS RULEACTIONTOBEFIRED , URR.TRAIL AS TRAIL , URR.USERHISTORYKEY AS USERHISTORYKEY ,U.USERNAME
FROM USERRULERUNDATA_ARCHIVE URR , USERS U WHERE
URR.USERKEY = <userkey>
ORDER BY URR.UPDATEDATE DESC

However for endpoints exposed in prov rules email , yes you can submit an enhancement in https://ideas.saviynt.com/

Go to solution
shivmano
Regular Contributor III
Regular Contributor III

‎04/24/2023 11:02 PM

thank you @nimitdave . I was also able to capture the task triggered from the particular rule using the ASSIGNEDFROMRULE column in the arstasks table to use in analytics and take action accordingly. Here is the analytics query 

select group_concat(a.taskkey) as 'taskid',u.username as 'username', group_concat(e.displayname) as 'Endpoint' from users u, arstasks a, endpoints e where u.userkey=a.userkey and a.endpoint=e.endpointkey and a.status in (1,3) and a.ASSIGNEDFROMRULE = <Rulekey> group by u.username

0 Kudos
Copyright © 2024 Khoros, LLC