Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Provision Access based on account customproperty

Sitarasmi
Regular Contributor
Regular Contributor

‎11/29/2023 12:32 AM

Hi Team,

We have a requirement where we have 2 type of accounts(Primary, external) for a single endpoint. So the, requirement is whenever an update rule is called like department name is updated and as per the  technical rule if condition matches user will be added to 1 AD group. We want group will be added only to Primary Account not external Account. We can differentiate between primary and secondary account through Accounts customproperty.
Please let us know how this can we achieved.

Thanks,

Sitarasmi

Labels:
0 Kudos
8 REPLIES 8

ejeong
Valued Contributor
Valued Contributor

‎11/29/2023 04:22 AM

How abt using prmiary account type feature under Endpoint?

0 Kudos

Sitarasmi
Regular Contributor
Regular Contributor
In response to ejeong

‎11/29/2023 04:37 AM

Hi,

Can you please elaborate ? Unable to understand.

Thanks,
Sitarasmi

0 Kudos

ejeong
Valued Contributor
Valued Contributor
In response to Sitarasmi

‎11/29/2023 04:40 AM

You can specify what primay account type is in endpoint. Then tech rule will create tasks for the primary account type only.

0 Kudos

Manu269
All-Star
All-Star

‎11/29/2023 04:52 AM

@Sitarasmi 

A user can have multiple types of accounts within an endpoint, such as - User Account, Service Account, Privileged Account. Here, a primary account can be selected amongst these multiple accounts, for which the relevant tasks can be created.

Hence, if a user has two accounts a and b and if you want the entitlement to be assigned to only account a and NOT account b then you need to provide the accountType value of account a from the Database, which will assign entitlements only to account a of user and NOT to account b.

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos

SumathiSomala
All-Star
All-Star

‎11/29/2023 05:15 AM - edited ‎11/29/2023 05:16 AM

@Sitarasmi 

Yes,The Primary Account Type parameter available in the Endpoint show page can be used for controlling add access tasks triggered from the Technical Rule.

SumathiSomala_0-1701263810028.png

 

Refer Controlling Add Access Tasks for Primary Account Type in an Endpoint section in below doc

Uploading Technical Rules (saviyntcloud.com)

 

If this reply answered your question, please accept it as a solution and kudos.

Regards,
Sumathi Somala
If this reply answered your question, please Accept As Solution and give Kudos.
0 Kudos

rushikeshvartak
All-Star
All-Star

‎11/29/2023 08:23 PM

Refer : https://forums.saviynt.com/t5/did-you-know/did-you-know-how-and-why-you-set-up-primary-account-type/...


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Sitarasmi
Regular Contributor
Regular Contributor

‎11/29/2023 10:32 PM

Hi All,

Thanks for your reply, but I am not getting any option under Endpoint to select Primary account type

Sitarasmi_0-1701325879181.png

Anything I am missing here ?

Thanks,

Sitarasmi

0 Kudos

Manu269
All-Star
All-Star
In response to Sitarasmi

‎11/29/2023 10:36 PM

Did you define the accounts type in accounts?

Please refer the docs shared by @rushikeshvartak 

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos
Copyright © 2024 Khoros, LLC