Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Unique Sequence number as account name for service accounts

Pravallika_t
New Contributor III
New Contributor III

‎06/13/2024 01:45 PM

Hello Team,

We are using an 8 digit service account name starting with 'S1' and incrementing the last last digits by 1. The service account name rule is using dynamic attribute for the name generation, where we defined dynamic attribute using the below query :

select concat('S',MAXID + 1) as ID from (select MAX(cast(ID as UNSIGNED)) as MAXID from (select MAX(cast(substring(acc.name,2,7) as UNSIGNED)) as ID from accounts acc where acc.name like 'S%' and acc.endpointkey = 3 ) acct union all (SELECT MAX(cast(substring(raa.ATTRIBUTE_VALUE,2,7) as UNSIGNED)) as ID FROM request_access_attrs raa where raa.ATTRIBUTE_NAME='DynaAccountName' and raa.ATTRIBUTE_VALUE like 'S%'))maxt order by MAXID desc limit 1

Which is working fine and generating the next number.

But when there are more than one live sessions/users accessing the request form before submitting the request then the same Account name is getting generated. Even the Account name is generated same after the request is submitted when the multiple users access the manage service account form at same time and create provisioning issues.

Could you please help us to rectify this issue.

 

0 Kudos
5 REPLIES 5

rushikeshvartak
All-Star
All-Star

‎06/13/2024 08:33 PM

  • You can validate in workflow if accountname is already in used or request in progress you can auto reject request.

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Pravallika_t
New Contributor III
New Contributor III
In response to rushikeshvartak

‎06/14/2024 10:56 AM

Hello,

We have tried the above solution by putting some conditions as below in workflow, but they are not working.

accountsMap.get(requestaccesskey).name == request_access_attrs.ATTRIBUTE_VALUE 

dynamicAttributes.get('DynaAccountName') == request_access_attrs.ATTRIBUTE_VALUE

(dynamicAttributes.get('customproperty17') eq account.name)

We would like to know what condition can be used to check the 'accountname' is already used for request in progress in workflow.

Thanks & Regards,

Pravallika Taniparthy

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Pravallika_t

‎06/14/2024 11:34 AM

You need to use sql query using groovy block


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Pravallika_t
New Contributor III
New Contributor III
In response to rushikeshvartak

‎06/19/2024 07:50 AM

Hello,

Client doesn't want to go through Workflow approach, could we know if there is any other possible solution to achieve this.

Thanks & Regards,

Pravallika Taniparthy

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Pravallika_t

‎06/19/2024 10:23 PM

No . Please raise idea ticket for race -around condition


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC