Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Role owner campaign filters

HarishG
Regular Contributor
Regular Contributor

‎07/09/2024 03:00 AM

Hi,

While configuring role owner campaign, is there any way to avoid the roles which are assigned as birthrights to the users?

 

Thanks,

Harish

0 Kudos
10 REPLIES 10

naveenss
All-Star
All-Star

‎07/09/2024 03:53 AM

Hi @HarishG  you can achieve this by setting the value of customproperty for the role as "BIRTHRIGHT" and then use advanced query during the campaign creation to exclude such roles. Use the query like below

naveenss_0-1720522380557.png

 

 

Regards,
Naveen Sakleshpur
If this reply answered your question, please click the Accept As Solution button to help future users who may have a similar problem.
0 Kudos

rushikeshvartak
All-Star
All-Star

‎07/09/2024 10:58 PM

  • You can follow role naming convention as BR-
  • OR use roles customproperty to define birthright role.rushikeshvartak_0-1720591101243.png

     


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

HarishG
Regular Contributor
Regular Contributor

‎07/10/2024 02:20 AM

Thank you @naveenss and @rushikeshvartak ,

But, there are few roles - which are assigned as birthrights for some users. And remaining users who still need this role will request from ARS.

can we somehow manage to include the role in certification:

  • with only users who request from ARS
  • and avoid users who got is as BR

 

Thanks,

Harish

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to HarishG

‎07/10/2024 06:22 AM

  • You can use source column from role_user_account table

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

naveenss
All-Star
All-Star
In response to HarishG

‎07/11/2024 01:54 AM

@HarishG you can use SOURCE attribute in the role_user_account table to differentiate the roles assigned as BR and role requested by the user. 

 

Regards,
Naveen Sakleshpur
If this reply answered your question, please click the Accept As Solution button to help future users who may have a similar problem.
0 Kudos

HarishG
Regular Contributor
Regular Contributor

‎07/12/2024 01:07 AM

Thanks @naveenss & @rushikeshvartak ,

But role_user_account table is not working in role query. we are able to use role table and roleowner table

0 Kudos

naveenss
All-Star
All-Star
In response to HarishG

‎07/12/2024 01:17 AM

@HarishG can you share the query you are trying?

Regards,
Naveen Sakleshpur
If this reply answered your question, please click the Accept As Solution button to help future users who may have a similar problem.
0 Kudos

HarishG
Regular Contributor
Regular Contributor

‎07/12/2024 02:13 AM

Hi @naveenss ,

Query:

and rua.source in ('REQUEST')

HarishG_2-1720775471300.png

 

0 Kudos

naveenss
All-Star
All-Star
In response to HarishG

‎07/12/2024 02:22 AM

@HarishG  use below query

and r.id in (select rua.rolekey.id from Role_user_account rua where rua.source='REQUEST')

 

Regards,
Naveen Sakleshpur
If this reply answered your question, please click the Accept As Solution button to help future users who may have a similar problem.
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to HarishG

‎07/12/2024 07:42 AM

rushikeshvartak_2-1720795343494.png

 

and r.id in (select rua.rolekey.id from Role_user_account rua where rua.source not in ('ZERODAY'))

Different SOurce :

REQUEST
UPDATE_ROLE
ZERODAY

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC