This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Removing a inactive user from application role

smitg
Regular Contributor III
Regular Contributor III

‎08/23/2023 03:00 AM

Hi team,

We have to remove an inactive user from application role. 
Problem is user is removed from associated entitlement directly in AD from some other process but role is still associated with user.

When we try to remove user either from user profile or role, request is creating but user not removed after approval.

How can we remove user from role?

Thanks,
Smitha

 

 

0 Kudos
1 REPLY 1

armaanzahir
Regular Contributor III
Regular Contributor III

‎08/23/2023 04:35 AM

Hi Smitha,

You may not be able to achieve this using the createrequest or the removerole api as they seem to not be working on inactive users.

The workaround for this would be to create an actionable analytic to remove the roles from these inactive identities.

 

armaanzahir_0-1692790481368.png

 

You may modify the above query to fetch results only for the userset desired by adding those conditions. 

Actioning on this analytic will directly de provision the role without creating the request. The audit information would be available in this analytic though.

Ref: Configuring Allowed Actions (saviyntcloud.com)

Solved: Unable to Remove Inactive User from Role using API - Saviynt Forums - 43563

Thanks,

Armaan

Regards,
Md Armaan Zahir
Copyright © 2023 Khoros, LLC