This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Legacy Forums
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Saviynt Forums
- Legacy Forums
Options
Browse the Community
Did you know ?
28 PostsActivity in Legacy Forums
EPIC Connector - Non-Human Accounts
Originally posted on February 14 2022 at 05:52 UTCHi Team,Can anyone please confirm whether EPIC OOTB Connector support non-human accounts handling ?Thanks and Regards,Sudhin Sudhakar
Permission Denied - Self Service Password reset for service account Via owner
Originally posted on February 7 2022 at 08:49 UTCHi ,The user from which i am logging in is the owner of service account . When the user clicks password reset page for service account he gets a permission denied error . Please let me know what more a...
Resolved! Did you know? We have the ability to run parallel and multi-threaded application data import jobs
Originally posted on June 5 2020 at 23:42 UTC 1. When do we run parallel import jobs?When customers want to reconcile multiple applications at the same time 2. Which connectors support parallel import jobs?All out of the box connectors 3. Which con...
DB Connection - Issues while import users
Originally posted on July 5 2021 at 13:27 UTCTeam,I have DB Connection which is pointing to Oracle database. Seems like while running the recon job users not loading into Saviynt.Import JSON:<dataMapping> <sql-query description="This is the Source DB...
How to send Create Task endpoint level email to entitlement owner
Originally posted on December 24 2021 at 10:16 UTCHi,We have requirement where we need to send Create Task email to Entitlement owner. We can use ${task.entitlement_valueKey.getOwnersRank1()} to get entitlement owners username but how to get email a...
Resolved! Did You Know? You have the ability to configure jobs to run at a specific time zone
Originally posted on September 11 2020 at 20:47 UTC1. Why do you need jobs to configured to run at a specific time zone?a) Bulk update of job schedules during day light savings ON and OFFb) If any customer wants to execute the jobs in a specific time...
Resolved! Did you know? You have the ability to attach and archive attached files in access request
Originally posted on March 27 2020 at 19:26 UTC1. Why do we have the ability to attach files in request?When a requester has to justify why the beneficiary needs the access request OR When the approver needs to justify why he/she is approving benefic...
Did you know? How you can show or hide, make a dynamic attribute required or not required in SSM?
Originally posted on October 3 2020 at 06:47 UTCHow can you show/hide a dynamic attribute in request forms?Hide on Create config on the dynamic attribute definition hides the attribute on create request forms.Hide on Update config on the dynamic attr...
Resolved! Did You Know? You have the ability to compute user attributes as part of your user import using inline preprocessor
Originally posted on August 28 2020 at 21:22 UTC 1. What is user import inline preprocessor?User import inline preprocessor generates user attributes that requires some computation ...
Did you know? How and where can you leverage the strength of SSM’s dynamic attributes?
Originally posted on October 9 2020 at 18:29 UTCWhat are the different types of dynamic attributes supported in SSM?Account Level Dynamic Attributes: Number, String, Boolean, Enum, Large Text, Checkbox, Date, Password,Single Select from SQL query, Mu...
ADD 'Test' on a user CustomProperty40 if his manager's CustomProperty 35 contains 'BT'
Originally posted on June 24 2021 at 09:53 UTCHi,I want to create an analytic to ADD 'Test' on a user CustomProperty40 if his manager's CustomProperty 35 contains 'BT' using analytic query V2.Look forward to hearing from you soon!Thank you very much ...
Resolved! Did you know? You can filter “Who can request/view/approve the access for whom based on Savroles”
Originally posted on July 18 2020 at 00:03 UTCWhat is a savrole?SSM’s savrole is where you define which user has what access inside SSMWhat are the configs needed to filter users in Request and filter requests in history/approval screens?Whom to Requ...
Did You Know? How and why you set up Primary Account Type?
Originally posted on January 15 2021 at 23:55 UTC1. What is the purpose of the Primary Account Type?When user has multiple user accounts in an application, but you want to provision certain critical or birthright access to only one of the primary acc...
Error in notifyEmailToOwner
Originally posted on April 23 2021 at 15:36 UTCHi,When i am running one of my analytics its not able to send email. Below is the error i am getting. Kindly help in this. 2021-04-23 15:25:12,587 [https-jsse-nio-443-exec-2] DEBUG analytics.AnalyticsESS...
Resolved! Did you know? We have the ability to modify the control results based on dynamic values added in runtime
Originally posted on June 19 2020 at 21:56 UTCWhy do we have dynamic attribute in controls?We need dynamic attributes in analytic controls to allow users the ability to get dynamic results based on the values they enter at runtimeFor eg:User would wa...
Resolved! Did You Know? You can transfer ownership on user termination and user update
Originally posted on September 4 2020 at 22:37 UTC1. Why do you need to transfer ownership?When a user is terminated, then all his/her ownership should be transferred to another pre-defined userWhen a user attribute is updated [for example, user leav...
Revert account disable triggered due to wrong termination date
Originally posted on February 10 2021 at 15:08 UTCHello experts,We have a requirement to revert the disabling of an account during leaver process, to cater for scenarios where the exit date in the system is wrong.Looking to see how this can be implem...
Resolved! Did you know? We will have the ability to extend access's end date soon
Originally posted on May 22 2020 at 18:49 UTCWhat is the business use case which we are trying to solve by extending end date of the assigned access?In an organization, if a project timeline is extended or cut short, then there is a need to extend or...
Attestation - Accept / Reject Grant Permission
Originally posted on January 19 2021 at 22:34 UTChttps://ihac.saviynt.com/ECM/user_GroupDetail/approverejectcommentroleowner?status=2&att_roleid=47&id=37&tabletoupdate=3&_=1611094612656{error: "access denied"}Hello Team, We wanted to share limited ac...
Resolved! Did you know? How you can associate a mitigating control to a SoD risk?
Originally posted on September 28 2020 at 07:34 UTCWhat is a SOD and why do you need to mitigate a sod risk?Segregation of duties (SOD), also called separation of duties, refers to a set of preventive internal controls in a company’s compliance polic...
Resolved! Did you know? You can configure and use Step up authentication in SSM
Originally posted on August 14 2020 at 16:27 UTCWhat is Step up authentication?Process by which a user is challenged to produce additional forms of authentication to provide high level of assurance that the user is who he claims to be. It makes sure ...
Resolved! Did you know? You can save your request in draft mode and view and submit it later
Originally posted on August 7 2020 at 23:13 UTCWhy do you need to save a request before submitted?To be able to save request when you get sidetracked by other tasks and refocus at a later point in timeTo save time on request steps which is already co...
Resolved! Did you know? You have the ability to view and retry rule run execution failures
Originally posted on July 31 2020 at 19:24 UTCWhy do you need Execution Trail feature?To retry rule or rule action failures for users created/updatedWhere is execution trail feature located in SSM?Execution Trail is located under Admin>PoliciesWhat a...
Resolved! Did you know? You have the ability to analyze data using sql queries from sql query browser
Originally posted on July 10 2020 at 21:11 UTCWhat is Data Analyzer?Data Analyzer provides the ability to run select queries against the database schema from a query browser in SSMWhy do we need data analyzer?Data Analyzer feature allowsTo eliminate ...
Resolved! Did you know? You have the ability to set up security question and answers while managing your password
Originally posted on June 26 2020 at 22:07 UTCWhat is the purpose of security question and answer?Security questions on any on-line service are designed to validate that a user is who they say they are. They are part of a general strategy on identifi...
Resolved! Did you know? You have the ability to reset security question and answers
Originally posted on June 26 2020 at 22:04 UTCWhat is the purpose of security question and answer?Security questions on any on-line service are designed to validate that a user is who they say they are. They are part of a general strategy on identifi...
Resolved! Did you know? We have the ability to Baseline an application
Originally posted on June 12 2020 at 17:00 UTC 1. When are user accounts and access considered as rogue?Any user account or associated a...
Resolved! Did you know? Saviynt has the ability to manage user passwords - Part1
Originally posted on May 29 2020 at 18:32 UTCWhat are the most common scenarios wherein Saviynt is requested to manage user passwords?Customer is looking to use Saviynt as their authentication source as well as password management solution for all us...
Resolved! Did you know? You have the ability to take default action on Analytics
Originally posted on May 15 2020 at 14:53 UTCWhat is default action for analytics?We have the ability to define actions to be taken on the fly when the control is run by using the keyword ‘Default_Action_For_Analytics’ in the control queryIn the belo...
Resolved! Did you know? You have the ability to transport SSM objects
Originally posted on April 24 2020 at 15:29 UTC1. Why do we need transport functionality?Transport feature enables customers to port SSM objects (Application, Connections, Configuration) defined in one environment easily to another environment2. What...
Resolved! Did you know? You have the ability to Create and Manage AD groups
Originally posted on April 10 2020 at 15:17 UTC1. What is AD Group Management?Saviynt provides the ability to onboard new AD groups and administer already existing AD groups in customer’s enterprise, thereby making Saviynt the single source of truth ...
Resolved! Did you know? You have the ability to Instant Provision
Originally posted on April 3 2020 at 18:49 UTC 1. What is instant provisioning?When the approver is done approving an application request OR if the provisioning tasks are created from reconciliation job for an application with automated provisioning ...
Approval workflow design for 1300 entitlements (EBS Responsibilities)
Originally posted on March 30 2022 at 14:29 UTCApproval workflow design for 1300 entitlements (EBS Responsibilities). for some entitlements the request should go for Manager and Entitlement owners approval. Other entitlements should go for only Entit...
Saviynt API Issue for CreateRequest
Originally posted on March 29 2022 at 21:16 UTCHello,I am trying to do a POST request to add entitlements to the user. However the following issue occurs in the response from Saviynt API:"<error>Invalid Request TypeNo signature of method: org.codehau...
Regex validation message of dynamic attributes in ARS
Originally posted on March 2 2022 at 08:43 UTCDear all,when using dynamic attributes in ARS, there's the possibility to us a regex to validate the data entered into the dynamic attribute field.When the valdiation fails, there is a generic error messa...
Ticket of every types of Failure
Originally posted on March 27 2022 at 04:21 UTCHi Team,There is a requirement where a ticket needs to be generated in an ITSM application(REST based app) on every failure events (Create/Update/disable/add access/remove access in AD and exchange)I am ...
App Not showing up in ARS
Originally posted on March 22 2022 at 17:33 UTCHello all, I have created a security system, end points and 2 entitlements types (groups & roles) with total 4 entitlements.Here are the settings:1. End point has the setting Requestable as ON, Security ...
Resolved! Only Allow Access Requests - No Account Requests
Originally posted on March 21 2022 at 12:50 UTCIs it possible to only allow requests for adding or removing access and NOT allow the request for a new account? Customer wants to allow requesting changes to access (entitlements) for existing correlate...
Resolved! V2021 - After submitting a request there is no evidence of that request has been submitted
Originally posted on March 16 2022 at 07:54 UTCHI All,When we try to create and submit a Request for any of the application available. We couldn't see any task being generated. No evidence of submitting request i.e. No record in Request History/Pendi...
Resolved! REST Connector tokenResponsePath Syntax
Originally posted on March 18 2022 at 18:51 UTCHi, I have rest connector endpoint serving as the authoritative source for employees and contractors. The REST endpoint uses a username, password, and clientId passed in the header of a POST request in o...
Entitlement information in role request approval emails
Originally posted on October 21 2020 at 10:46 UTCHi,Customer requires entitlement information to role approval emails (i.e. what entitlements belongs to the requested role).I tried all the parameters presented here: https://saviynt.freshdesk.com/supp...
Resolved! Rename ARS Tiles
Originally posted on March 21 2022 at 02:26 UTCIs it possible to customize the names of the standard tiles in v2020? We have a customer who is looking to rename the default tiles (i.e., Request New Access).Thanks!
Resolved! AzureAD connection CREATE_NEW_ENDPOINTS is not working
Originally posted on March 19 2022 at 07:31 UTCHi,We are creating a AzureAD connection and we have elected CREATE_NEW_ENDPOINTS = NO. Still the Securitysystem and Endpoints are getting created. Is this expected even when CREATE_NEW_ENDPOINTS = No?Br...
Resolved! Delete Icon Not Showing in AD Group Management (Manage AD Groups)
Originally posted on March 18 2022 at 17:29 UTCWe have noticed that the Delete icon (the trash can) does not show for AD Groups on the Manage AD Groups screen until after you try to edit the group. As soon as you click the Edit icon and then back out...
Checking UPN against email and proxy addresses
Originally posted on March 16 2022 at 13:16 UTCHi! How would it be possible to check the UPN value against both email and proxy addresses field?We are currently planning to check UPN against email in the AD connector using the 'CHECKFORUNIQUE' -field...
Resolved! Documentation on how to write manual queries
Originally posted on February 5 2019 at 00:07 UTCIs there any documentation on how to write manual queries while configuring access reveiws (campaigns / attestations)? Does the query have to be a complete regular SQL query or does Saviynt have its na...
Resolved! Analytics Schedule Column
Originally posted on February 10 2022 at 20:38 UTCI am making an analytic to gather the information of every analytic. I need to get a column for schedule but that is not in the analyticsconfiges table where all the data is. I found the schedule it i...
Resolved! New Account Workflow
Originally posted on October 14 2020 at 11:04 UTCHello, I created new AD connection for admin account creation via ARS. I would like to apply approval workflow for new account request. Where is the place I can select workflow for this request?I check...
Limiting users that can be selected as service account owners
Originally posted on December 10 2020 at 09:47 UTCHi,we have a customer requirement that only internal users should be assigned as service account owners. Is there some way to limit which users can be set as service account owners in "Manage Service ...
Resolved! Detective User Update Rule - Not getting fired on User Import
Originally posted on January 16 2020 at 21:03 UTCI have configured a couple of User Update Rules and selected the Detective checkbox.The rules did not get fired when i ran my users' import.Later I manually ran the Run Detective Rules and Take Action ...
Getting started
Register or login here
We want your journey here to be as great as can be, so we have put together some links to help you get quickly familiarized with the Saviynt Community.
