Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

User visibility and Data separation between multiple projects

PHN
New Contributor III
New Contributor III

Hello Team,

We have a requirement to separate the data between multiple projects(4 projects). We are exploring the organization option to restrict the user visibility to only their own project data.

Created different organizations and assigned the users, endpoints, and entitlements.
Created separate SAV roles and linked the respective ORG.

I have below questions -

  1. In the options like Request access for others, change password, users can see only their own project users but they can still see all the endpoints and entitlement data. is it expected behavior?
  2. In the ORG Campaign, there is only an option to certify ORG and corresponding users and child org but no option to review endpoint, entitlement or roles associated with ORG.
  3. What should be the type of organisation(Data Security/Grouping/Request Rules/Company)?
  4. What other features come with TPAG license as without TPAG we can still create and manage ORG?
  5. Suggestion: What option would be good fit for this requirement using ORG to restrict data between projects OR using access query, ent requestable config and SAV role advanced query to control the user visibility?
5 REPLIES 5

rushikeshvartak
All-Star
All-Star

1  You can show endpoint specific to organizations based on connection - default sav role configuration.

2 Enable Endpoints tab from tab configuration 

3 please elaborate 

4 You can still create organization 

5. you need to filter data everywhere its configurable


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.

PHN
New Contributor III
New Contributor III

Thank you, @rushikeshvartak .

1  You can show endpoint specific to organizations based on connection - default sav role configuration. -> Edited-> This is working.

2 Enable Endpoints tab from tab configuration ->

Where is the tab configuration located?

Darshanjain
Saviynt Employee
Saviynt Employee

Hi @PHN ,

As Discussed

On TPAG license , it is mainly for customization of gsps . Also to restrict data it would be better via Org but you would need to use the filters in access query and sav roles for their respective sav roles.

 

Thanks

Darshan

PHN
New Contributor III
New Contributor III

Thank you @Darshanjain 

 

Tab config option

rushikeshvartak_1-1712924044627.png

 


Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.