Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

RiskSODEvaluationJob should evaluate only the active users

vermark
Regular Contributor
Regular Contributor

‎04/15/2023 05:14 AM

Hi Team,

After running the RiskSODEvaluationJob we are seeing that the risk is evaluated for both active and inactive users. We want this job should evaluate only active users. Please suggest.

Thanks

Labels:
0 Kudos
4 REPLIES 4

nimitdave
Saviynt Employee
Saviynt Employee

‎04/16/2023 08:02 PM

You can leverage the User Account Evaluation Criteria config in the job config to fetch accounts of active users only.

0 Kudos

dgandhi
All-Star
All-Star

‎04/17/2023 10:17 AM

Hi @vermark @nimitdave 

Why we would we limit just to active users?

If there are any Inactive users having active accounts with conflicting access then it should be detected in the SOD scan and violation owner should be able to remediate the violation.

If we limit just to active users , then how the system will detect conflicting access of inactive users with active accounts?

Thanks

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.
0 Kudos

vermark
Regular Contributor
Regular Contributor
In response to dgandhi

‎04/17/2023 10:25 AM

Hi Nimit/Devang,

Thanks for the reply. I was looking to filter active accounts which I was able to achieve using User Account Evaluation Criteria as mentioned by you.

0 Kudos

nimitdave
Saviynt Employee
Saviynt Employee

‎04/17/2023 11:50 AM

Fine @vermark , But as mentioned by @dgandhi , you have to consider inactive accounts as the conflicts in those are more serious and should be addressed immediately.

0 Kudos
Copyright © 2024 Khoros, LLC