Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Sav4Sav API control user privileges

Caesrob
Regular Contributor
Regular Contributor

We have created an analytics report which outputs the username and a specific syntax for his/her accounts entitlements. 

We use the SaviyntForSaviynt REST connector to map this output to a user's customproperty. But we found out there is a user in the users tab who controls the API privileges. 

Caesrob_0-1690966916155.png

First of all, we couldn't find any documentation regarding this user and what its purpose is. So if anyone could link us some documentation on this, that would be great.

Second, we had to give this user the ROLE_ADMIN for it to be able to access the Analytics API (otherwise our job to import the specific output of the analytics to the user's CP wouldn't work). 

Is there a way for us to give this user as little privileges as possible but still be able to access every Saviynt API? We don't want to give this user all of the privileges of the ADMIN_ROLE. 

 

5 REPLIES 5

DixshantValecha
Saviynt Employee
Saviynt Employee

Hi,

We are checking on this and we will keep you posted.

Rishi
Saviynt Employee
Saviynt Employee

This user id is generated while enabling the Saviynt for Saviynt from Global configuration > Preferences > Configure Saviynt for Saviynt

Rishi_0-1691168565597.png

This user is generated and assigned to Sav role which has access to required webservices. You can view the webservice access by first confirming if ROLE_SAV4SAV_ADMIN is assigned to sav4savuser and then by confirming the access of this Sav role by navigating to Web Service Access tab of ROLE_SAV4SAV_ADMIN

Is is documented in document that by enabling it will create new SAV + user ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Hi @rushikeshvartak ,

The documentation process for this functionality is currently underway.

rushikeshvartak
All-Star
All-Star

You can control privilege by removing other API access . Currently it provides all access.

rushikeshvartak_0-1691366615570.png

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.