Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

SOD Evaluation for Tcodes using nosap type function

asharma
Regular Contributor II
Regular Contributor II

Hi,

Requirement - We want to evaluate the violations/conflicts at the time of access request but we want user to request sap role and saviynt should evaluate on the basis of Tcode. Is this possible? If yes, how?

6 REPLIES 6

sai_sp
Saviynt Employee
Saviynt Employee

Yes, this can be done. Please set the function type as Non-Sap and set the sod.entitlement.depth in the externalconfig.properties to 2. SOD will be then evaluated at the 2nd level which is the tcode - 1st being the saprole. Define the ruleset accordingly.

asharma
Regular Contributor II
Regular Contributor II

we have to upload a ruleset so we cannot change the function type as non sap. It will sap then only we can upload the ruleset with tcodes.

NM
Honored Contributor II
Honored Contributor II

Hi @asharma can you share the ruleset?

You want to evaluate the SOD at which level?

asharma
Regular Contributor II
Regular Contributor II

I am trying with default available from Saviynt doc with objects as 

FUNCTIONENDPOINTTCODE OBJECTNAMEFIELDNAMEMINVALUEMAXVALUERELATIONSTATUS

NM
Honored Contributor II
Honored Contributor II

@asharma so is ilit not working ? Showing an error?

  • Try using simulation feature

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.