Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Trigger separate approval for Entitlements mapped to an Application role

Aditya
New Contributor
New Contributor

Hi All,

 

We have a specific requirement in Approval process as below:

We have an endpoint which has entitlements and application roles as requestable component in ARS.

Aditya_5-1722547729641.png

 

Application role has no owner mapped, it contains multiple entitlements having owners.

Aditya_0-1722547483736.png

Aditya_3-1722547525811.png

 

Owners are set at the Entitlement level not at the Application Role level.

Aditya_4-1722547594612.png

 

Requirement:  We have to send the Access approval to the Entitlement Owners not the Application Role Owners.

By default saviynt take the role owner as approver and after approval the entitlements are added.

 

Is there any way to send approvals to Entitlement Owners? using the custom assignment block in workflow? 

Aditya_6-1722548069988.png

 

 

Thanks,

Aditya

 

4 REPLIES 4

rushikeshvartak
All-Star
All-Star

Use custom assignment block to find entitlement owner and use ${assignee.email}


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Aditya
New Contributor
New Contributor

Hi @rushikeshvartak ,

 

I am using below custom query to fetch the userkey of entitlement owners:

Aditya_0-1722594810555.png

 

However the approvals are going to the entitlement owner as below:

 

Aditya_2-1722595004030.png

But the approvers can't see their respective entitlements, they are able to see the application role only.

 

The expectation is to send the approval for each entitlement separately, not as a single role.

 

Thanks,

Aditya

 

 

If entitlement having multiple owners then it will show 1 request. select 2 entitlement with different owners and validate

 

Since your application role based approval cannot be shown as individual line item. Its is non standard approval pattern


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

NM
Honored Contributor II
Honored Contributor II

Hi @Aditya , i believe as the request from the ARS page is submitted for the role it will show role only for approval .. it doesn't matter whatever you add in the custom query it is just for approval.