Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Update custom property when user not in file

Go to solution
aalvarez_mk
New Contributor III
New Contributor III

‎05/08/2024 09:21 AM

I have a requirement to onboard a view into Saviynt using a DB connection. The view will have a single field (ties to username). The view is not authoritative for identity creation/management. If a user is in the view, we need to provision access to an AD group. If they are removed from the view, we should remove the AD group. I have tried creating a new connection and setting a user import to set a custom property which can be used in a rule for provisioning access. That works as expected. However, I don't know how to clear the custom property if they no longer show up in the view. Possibly using modifyuserdatajson?

Or possibly a change of approach may be warranted. Any assistance would be appreciated.

Labels:
0 Kudos
3 REPLIES 3

Go to solution
Saathvik
All-Star
All-Star

‎05/08/2024 10:17 AM

@aalvarez_mk : Yes you have to use inline preprocessor logic which goes to MODIFYUSERDATAJSON.

Sample JSON: Here CUSTOMPROPERTYxx is attribute you are updating with user is coming from VIEW so replace it with appropriate CP.

{
    "ADDITIONALTABLES": {
        "USERS": "SELECT USERNAME,CUSTOMPROPERTYxx FROM USERS",
    },
    "COMPUTEDCOLUMNS": [
        "CUSTOMPROPERTYxx",
    ],
    "TABLEINDEXES": {
        "CURRENTUSERS": [
            "USERNAME"
        ],
        "NEWUSERDATA": [
            "USERNAME"
        ]
    },
    "PREPROCESSQUERIES": [
        "UPDATE CURRENTUSERS CU LEFT JOIN NEWUSERDATA NU ON CU.USERNAME = NU.USERNAME SET CU.CUSTOMPROPERTYxx='' WHERE NU.USERNAME IS NULL and CU.CUSTOMPROPERTYxx IS NOT NULL"
    ]
}

 


Regards,
Saathvik
If this reply answered your question, please Accept As Solution and give Kudos to help others facing similar issue.
0 Kudos

Go to solution
aalvarez_mk
New Contributor III
New Contributor III
In response to Saathvik

‎05/09/2024 09:19 AM

Thank you so much. I will give this a try and confirm here.

0 Kudos

Go to solution
aalvarez_mk
New Contributor III
New Contributor III
In response to aalvarez_mk

‎05/29/2024 08:15 AM

Saathvik,

Tried using the UPDATE CURRENTUSERS but it was not successful. I'm not sure the currentusers allows updating user data, and is just a temporary table for access. I modified the original query to filter a user who exists in the view, and their data was not modified.

0 Kudos
Copyright © 2024 Khoros, LLC