Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

"Remove Birthright Access if condition fails" rule triggering even if condition is not changing

indra_hema_95
Regular Contributor III
Regular Contributor III

‎05/28/2024 10:38 PM

Hi,

We are observing one behavior in technical rule. Suppose in user update rule we have 4 conditions and if one of it got updated then it will trigger the corresponding technical rule. Now the technical rule has 3 conditions but that is different from the user update rule conditions. Now we are observing even the technical rule conditions are not changing still it is generating remove access task for the account whenever the user update rule is getting triggered. 

Is this a defect?

Regards,

Indra

Labels:
0 Kudos
5 REPLIES 5

rushikeshvartak
All-Star
All-Star

‎05/28/2024 11:26 PM

It can be data issue. please share rules details


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Saviynt_Savvy
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎05/29/2024 01:24 AM - edited ‎05/29/2024 01:26 AM

Hello @rushikeshvartak ,

Here I am sharing the screenshot of the User Update Rule and the Technical rule in configuration.

User Update Rule:

We are updating the Location attribute as mentioned in the User Update Rule, so that It will create Update Account Task for both the Endpoints in Action.

Saviynt_Savvy_0-1716970258489.png

Once the Location attribute is updated, it is creating the Update Account task and also creating the "Add Access" & "Remove Access" tasks because of the "Remove Birthright Access if condition fails" options Enabled in the below Technical Rule.

The issue here is the Technical Rule doesn't have the Location attribute in condition and still it is creating the "Add access and Remove access" tasks.

Saviynt_Savvy_1-1716970510770.png
The User, whose location we are updating, have all the values same in the attributes as mentioned in the Technical Rule.
Below is the User Update Rule which triggers the above Technical Rule and it also doesn't have the Location attribute in condition.

Saviynt_Savvy_2-1716970857137.png

But as we are updating only the Location attribute, the User Update rule should not trigger the Technical Rule right?

Thanks & Regards,
SaviyntSavvy

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Saviynt_Savvy

‎05/29/2024 11:24 PM

What is source and source id in arstasks table for task ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Saviynt_Savvy
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎05/31/2024 12:23 AM

Hi @rushikeshvartak 
I see the source=ZERODAY and sourceID=954

Saviynt_Savvy_0-1717140200454.pngThanks & Regards,
SaviyntSavvy

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Saviynt_Savvy

‎06/03/2024 08:25 PM

Does it match with your rule ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC