Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Need to understand list of action performed when AAD Create Entitlement task runs

narendranegi
New Contributor II
New Contributor II

‎01/08/2024 04:21 AM

Hi,

Can anyone please explain, what all action Saviynt performs when running the Create Entitlement task for AAD group?


I have gathered few:

1. Gather the groups GUID in the response.
2. Create Entitlement with it.
3. Remove existing role version.
4. Add Entitlement key to role.

but they are not complete.

Regards

Labels:
0 Kudos
3 REPLIES 3

rushikeshvartak
All-Star
All-Star

‎01/08/2024 11:27 AM

  • Saviynt uses the role management module for Azure AD Group management
  • When you raise an AAD Group request, the below process is done in saviynt
    • Role with Role Type Entitlement gets created
      • Role Type: Entitlement 
      • Endpoint: Azure AD
    • Once WSRETRY is ran
    • Groups gets created in Azure in response, it return Object GUID
    • Entitlement gets created with the same name as the role name under the AADGroup Entitlement type of AD and the entitlement ID received in the previous step.
    • Entitlement valuekey is get populated in roles table to maintain relation between role & entitlement
    • Role status become active and version become active

Query to get role information:

select role_name,roletype,endpoint,ENTITLEMENT_VALUEKEY from roles where status=1 and roletype=6


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

narendranegi
New Contributor II
New Contributor II

‎01/09/2024 02:26 AM

Hi Rushikesh,

Thanks for the reply.

Can you please list the API that we can use to do it manually in Saviynt?

regards

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to narendranegi

‎01/09/2024 08:46 PM

Create task API for assignmenttype - ENTITLEMENTS,

https://documenter.getpostman.com/view/23973797/2s9Ykhh4VH#6e3b6163-0e07-46e6-b0d1-f6ac45ec4344


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC