Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Technical Rule: Asssign enterprise role only if the user has an account in application X

Paul_Meyer
Regular Contributor
Regular Contributor

‎11/15/2022 04:59 AM - edited ‎11/15/2022 05:03 AM

From the docs regarding technical rules and forum posts, it seems like a technical rule and its advanced queries can only access the users table.

We have a requirement to assign an enterprise role (containing application entitlements) to a user only when they have an active account in an application, as imported via account recon jobs. We have three applications for whom we need to assign enterprise roles and we cannot directly provision new accounts in the applications, only assign entitlements.

Is seems we would need to set a user custompropertyX, Y and Z (one for each application) with a value such as "HasAppXAccount" and use the user custompropertyX, Y or Z in the technical rule. ie If User.custompropertyX equals "HasAppXAccount", assign AppX Enterprise Role.

Is there a better method to assign enterprise roles if a user has an existing active account in an endpoint?

Also how would you maintain the user custompropertyX,Y and Z values over time?

We have been looking at using the "Saviynt For Saviynt" DB connection somehow, but are struggling to find a working configuration.

Any advice on how best to build a solution for the requirement?

 

0 Kudos
3 REPLIES 3

rushikeshvartak
All-Star
All-Star

‎11/15/2022 05:59 AM

You can use user’s customproperty to store value if user have access to certian application (use only 1 customproperty)

using saviynt 4 saviynt you can update customproperty ( need to use preprocessor)

based on user cp you can try technical rule


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Paul_Meyer
Regular Contributor
Regular Contributor

‎11/15/2022 06:07 AM

Any pointers on docs for the pre processor? Cannot find any documentation regarding the Sav 4 Sav feature nor any details on the Database connector guide.

 

0 Kudos
Copyright © 2024 Khoros, LLC