Would like to know separate SAV_ROLE feature access to manage service account user lifecycle. Right now, we are relying on SAV_ADMINs for managing Service accounts. We would like to create a separate role for managing (creating/deleting/updating) Service accounts.
If there is already any existing feature access, please let me know.
Solved! Go to Solution.
@darshanmandhane : Creation of service account can be done by anyone as long as sav_role as required features. But deletion, modification and change password can only be done by owners of service account or admins. That's the default behaviour of Saviynt.
There is an IDEA EIC-I-3922 already opened to enhance this feature which is accepted.