Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Users need to manage Entitlements via Role Management if they are owner of it

sumalatham
New Contributor III
New Contributor III

‎09/01/2024 11:46 PM

Hello Team

We have to restrict the below configuration via Role Management.
End user(not a part of Admins or any Local IT Savroles) should be able to ONLY see and manage the entitlements in role that they are owner of that entitlements.

Please can you help on this?

Thanks
Sumalatha

Labels:
0 Kudos
8 REPLIES 8

travemole
Regular Contributor
Regular Contributor

‎09/01/2024 11:57 PM

The idea is that the user is able to add / remove entitlements from roles but only the ones that he/she is owner of if possible. Basically to restrict visibility and critical/confidential entitlements.

0 Kudos

sumalatham
New Contributor III
New Contributor III

‎09/02/2024 12:16 AM - last edited on ‎09/02/2024 01:35 AM by Community Manager

Hello Team

Additional information for this requirement:

1.Go to Manage Roles -->Manage Roles

sumalatham_0-1725261244554.png

 

2.Select role like below and click on edit button.

sumalatham_1-1725261244560.png

 

3.In Entitlements tab inside role, user should be able to add/remove entitlements if they are owner of that entitlements like below

sumalatham_3-1725261244571.pngsumalatham_2-1725261244565.png

Thanks

Sumalatha
[This message has been edited by moderator to mask sensitive information]

0 Kudos

NM
Esteemed Contributor
Esteemed Contributor
In response to sumalatham

‎09/02/2024 12:37 AM

Hi @sumalatham are these applications roles?

I don't think so we can restrict them to add only entitlement which they are owner.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

sumalatham
New Contributor III
New Contributor III
In response to NM

‎09/02/2024 12:41 AM

Hello @NM 

Thank you for your reply. 

This restriction is for all types of roles.

0 Kudos

NM
Esteemed Contributor
Esteemed Contributor
In response to sumalatham

‎09/02/2024 01:32 AM - edited ‎09/02/2024 01:33 AM

As @Amit_Malik also confirmed it is not possible.

You can handle in workflow by checking if they are the owner or not and reject the request still user can add entitlement without any restriction.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Amit_Malik
Valued Contributor II
Valued Contributor II
In response to sumalatham

‎09/02/2024 01:09 AM

Hi @sumalatham , dont think this is possible.

You can raise an idea here - https://ideas.saviynt.com/ideas.

You can have role update workflow and do few things there but that would not match what you need exactly

 

Kind Regards,
Amit Malik
If this helped you move forward, please click on the "Kudos" button.
If this answers your query, please select "Accept As Solution".
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to sumalatham

‎09/02/2024 07:20 AM

  • You can restrict for entitlement from same endpoint if its appliction role type.
  • you can explore gsp option to validate if person is owner of entitlement or not using rest api

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

sumalatham
New Contributor III
New Contributor III

‎09/02/2024 12:25 AM - edited ‎09/02/2024 12:47 AM

 

 

0 Kudos
Copyright © 2024 Khoros, LLC