Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Setting an approval workflow for deleting roles

Sampo
Regular Contributor
Regular Contributor

‎09/05/2024 01:36 AM - last edited on ‎09/05/2024 03:27 AM by Community Manager

Hi, 

we have set up a role modification workflow that is triggered when a user creates or modifies an enterprise role and it's working well.

We have also enabled the Delete Role button from Global configs. When a user deletes a role we expected the delete request to go through the role modification workflow. But no request is created and the role is immediately set as inactive and renamed to <role_name>_deleted

Is there a way to set an approval workflow for deleting roles, or should some other approach be used for processing roles that should no longer be used.

The following documentation https://docs.saviyntcloud.com/bundle/EIC-Admin-v24x/page/Content/Chapter06-EIC-Configurations/Config... contains this information about the role modification workflow:

 

Role Modification Workflow

Use this setting to choose a workflow to be use for approving requests and updating or deleting a role. EIC roles map to groups in the target applications.

Based on this I was expecting that deleting a role would create a request that would be  processed by the role modification workflow.

best regards,
Sampo

[This message has been edited by moderator to merge reply comment]

Labels:
0 Kudos
5 REPLIES 5

Dhruv_S
Saviynt Employee
Saviynt Employee

‎09/09/2024 09:13 AM

Hi @Sampo 

Could you please test with role removal workflow.

Dhruv_S_0-1725898345531.png

Regards,

Dhruv Sharma

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Dhruv_S

‎09/09/2024 09:59 AM

@Dhruv_S  This workflow is used when user is getting removed from enterprise role


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Sampo
Regular Contributor
Regular Contributor
In response to Dhruv_S

‎09/09/2024 11:41 AM

I tested by setting my role modification workflow as the Role Removal Workflow but that doesn't work either, no request is created when the role is deleted. As Rushikesh mentioned the Role Removal Workflow is used when a request is created to remove an enterprise role from a user (and that use case is working), but the documentation is a little bit confusing here, as the text you copied showed that it's used for removing roles.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Sampo

‎09/09/2024 12:58 PM

as per my knowledge there is no workflow for role deleting


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

dgandhi
All-Star
All-Star

‎09/09/2024 12:46 PM

Can you try based on request type?

Example like below:

ars_requests.requesttype==6 

 

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.

0 Kudos
Copyright © 2024 Khoros, LLC