Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

SoD not evaluating in Saviynt app for service now for access request

varunakarnia
New Contributor III
New Contributor III

Hi All,

In one of our implementations, we are using Saviynt app for ServiceNow (SNOW) plugin and customer wants SNOW to be used as access request form for end users, Saviynt will only be used to complete provision and deprovision tasks following with fulfilling the access in target applications.

For one of the AD based logical applications, SoD is implemented for 3 entitlements (ent_1, ent_2, ent_3) no user can have any 2 ents together in their accounts for that application/endpoint.
 While raising request through ARS in saviynt, the preventative SoD is working fine and its showing violation to requester.

But when raising same access with 2 ents (Eg., ent_1, ent_2) in SNOW request form after request submission, the SoDviolation is not showing anywhere.

Am i missing any configuration here? We have enabled SoD in ruleset, global config and SavRole level

8 REPLIES 8

rushikeshvartak
All-Star
All-Star

Is it visible in saviynt ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

varunakarnia
New Contributor III
New Contributor III

Yes the SoD violations are showing in Saviynt ARS request after I select the same user with same entitlements request.

But when exact same request is getting raised via ServiceNow then it is not highlighting SoD

Check checksod - true/false, flag in service now api call

https://documenter.getpostman.com/view/36233838/2sA3XMi33N#ade866d1-15d7-4b1a-b86f-8d5e437e792a


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

varunakarnia
New Contributor III
New Contributor III

Apologies for late reply.

Yes I have checked and in addAccessRequest function the checksod flag is true.

 

Does issue resolved ?


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

varunakarnia
New Contributor III
New Contributor III

No.

Same issue happening. SoD violation is triggering great in Saviynt platform, but not on ServiceNow end.

Raised a freshworks ticket and Saviynt team is looking into it. Will keep this forum posted when found the solution

Preventative SOD wont work in service now. Its provided in the documentation. 

@varunakarnia 

FYI 

rushikeshvartak_0-1726497419649.png

No. You can only view SOD violations in ServiceNow. You cannot take any action against them. A request submitted in ServiceNow is approved only in Saviynt. Preventive SOD mitigations are not available in ServiceNow.

Note

Preventative SODs mitigations are not available in Saviynt App.

https://docs.saviyntcloud.com/bundle/SNOW-Saviynt-Integration-v24x/page/Content/FAQs.htm

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.