and more in a single search tool across platforms. Read the announcement here. |
04/11/2023 12:51 AM
Hi Team -
We have a scenario where we need to trigger an email notification to user from 'User update rule' and specify the list of endpoints the user owns in the email template. Can someone please let me know if there is any variable to pull the list of endpoints to which the user has access to?
Thank you
Solved! Go to Solution.
04/11/2023 01:20 AM
Notify as an email does not have any variable for endpoints owned by user.
Alternative you can explore task complete email or analytics to send such notifications.
Task complete email will be for each end point while analytics you can try for all endpoints owned by the newly onboarded user.
04/11/2023 01:57 AM
@nimitdave , Can I use analytics query to check if a particular rule has been triggered for a specific user and then select the endpoints he owns accordingly? The effort here is to inform user which of his access will be affected before we remove it as the rule gets triggered
adding this at the rule level should be something that needs to be added as an enhancement feature. If I need to disable user accounts from a rule and inform the user about the endpoints that will be affected before the remove account tasks are created, then being able to pull the endpoint objects that user owns at the rule level is more convenient.
04/24/2023 10:07 PM
Yes you can query userrulerundata_archive table to fetch the details for rule executed for a user.
SELECT URR.USERRULERUNDATA_ARCHIVEKEY AS USERRULERUNDATAKEY , URR.USERKEY AS USERKEY , URR.JOBGROUP AS JOBGROUP ,
URR.CHANGEMAP AS CHANGEMAP , URR.RULETYPE AS RULETYPE , URR.DETECTIVE AS DETECTIVE ,URR.BIRTHRIGHT AS BIRTHRIGHT , URR.PROCESSED AS PROCESSED , URR.COMMENTS AS COMMENTS ,URR.JOBID AS JOBID , URR.PARENTJOBID AS PARENTJOBID , URR.UPDATEDATE AS UPDATEDATE ,URR.EVENTSOURCE AS EVENTSOURCE ,URR.NEWDATA AS NEWDATA, URR.OLDDATA AS OLDDATA ,URR.RULEACTIONFAILED AS RULEACTIONFAILED, URR.RULEACTIONSUCCESSFUL AS RULEACTIONSUCCESSFUL ,
URR.RULEACTIONTOBEFIRED AS RULEACTIONTOBEFIRED , URR.TRAIL AS TRAIL , URR.USERHISTORYKEY AS USERHISTORYKEY ,U.USERNAME
FROM USERRULERUNDATA_ARCHIVE URR , USERS U WHERE
URR.USERKEY = <userkey>
ORDER BY URR.UPDATEDATE DESC
However for endpoints exposed in prov rules email , yes you can submit an enhancement in https://ideas.saviynt.com/
04/24/2023 11:02 PM
thank you @nimitdave . I was also able to capture the task triggered from the particular rule using the ASSIGNEDFROMRULE column in the arstasks table to use in analytics and take action accordingly. Here is the analytics query
select group_concat(a.taskkey) as 'taskid',u.username as 'username', group_concat(e.displayname) as 'Endpoint' from users u, arstasks a, endpoints e where u.userkey=a.userkey and a.endpoint=e.endpointkey and a.status in (1,3) and a.ASSIGNEDFROMRULE = <Rulekey> group by u.username