Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Use Organization filed in SOD ruleset to identify a SAP roles attribute

necoutinho
New Contributor III
New Contributor III

‎03/15/2024 06:09 AM

Hi Team,

We have a tcode in the SOD ruleset for which SOD violation os defined. This is defined, using function, risks and defining it in the "object" sheet of the sample ruleset template attached

This tcode is mapped to 2 different SAP role - say Role - "ABC" and "DEF".

ABC role is mapped to company A and DEF role is mapped to company B. Company is simply a custom property mapped to the roles in Saviynt

The usecase is whenever role ABC is requested - SOD violation should be detected and whenever DEF is requested - SOD violation should not be detected as it belongs to company 'B' even though both have the same tcode.

Just wanted to understand if this can be done using the organization column in the object and how this can be achieved

Labels:
0 Kudos
1 REPLY 1

rushikeshvartak
All-Star
All-Star

‎03/17/2024 06:36 PM

SOD works on entitlement and not on role level custom properties


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC