and more in a single search tool across platforms. Read the announcement here. |
01/17/2024 03:39 AM
Hi Team,
We would need to send all the users and all accounts and entitlement information of that users to one of the DB applications
Usecase: We have Baldo(DB) IAM system where all the users, applications and entitlement details exists but now saviynt is handling the all users and applications/entitlements but as baldo is doing external things we need to push all users and its accounts attached. We also have to sync users accounts information as soon as user got the access.
We have thought of 2 different approches here. Please suggest us the best feasiable way of approching this.
Approch - 1:
1. On SAV for SAV Recon All the entitlements of each application will be reconciled to Baldo endpoint in its individual entitlement type
2. Trigger Actionable Analytic Report to Generate 'Add Access' task to Baldo for the users who got added new accounts/accesses
3. Trigger Stored procedure in Baldo
Approch - 2:
1. Trigger Analytic Report to Generate users who got added to new accounts/accesses
2. Execute External Jar job to generate 'Add Access' task for Baldo endpoint
3. Trigger Stored procedure in Baldo
Suggest us if you could think of any more approches
01/17/2024 08:04 PM
Approach - 2: is better as Approach 1 will have duplicate data under one endpoint
01/17/2024 08:48 PM
Approch - 1: In this case we need to schedule sav for sav recon very frequently and chances to face performance issues
Approch - 2: In this case external effort and time is needed
Let us know if any other approches you could think off
01/17/2024 08:53 PM
Approach 2 is better
Both Approach-1 and Approach-2 seem reasonable, and the choice between them depends on your specific requirements, system architecture, and preferences. I'll provide some considerations for each approach:
Approach-1:
Reconciliation with Individual Entitlement Types:
Trigger Actionable Analytic Report:
Stored Procedure in Baldo:
Approach-2:
Trigger Analytic Report for New Users/Accesses:
External Jar Job:
Stored Procedure in Baldo:
Additional Considerations:
Scalability:
Error Handling:
Performance:
Security:
Monitoring and Logging:
Integration Complexity: