Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ARS approval with MFA (sms /email)

pmarvig
New Contributor II
New Contributor II

‎01/16/2024 10:21 PM

Hi ,

Would like to explore the possibility of having additional control on Access request workflow in Saviynt. 

All ARS approval/rejection are done in Saviynt, we have some critical application access approval which we want to prevent from being approved by anyone with Saviynt Admin access or in the event Saviynt is comprised. Is it possible to have MFA like approval imbedded in the workflow   where the approver has to input token/code received via sms/email in order to complete the approval process. This would reduce the risk of unauthorize access approval in Saviynt.  

Labels:
0 Kudos
4 REPLIES 4

DixshantValecha
Saviynt Employee
Saviynt Employee

‎01/18/2024 02:19 AM

Hi @pmarvig,

We are checking on your request and we will keep you posted.

0 Kudos

pmarvig
New Contributor II
New Contributor II
In response to DixshantValecha

‎01/18/2024 03:43 AM

OTP should be the right term instead of MFA. ARS approval with  OTP 

0 Kudos

DixshantValecha
Saviynt Employee
Saviynt Employee

‎01/22/2024 08:32 PM

Hi @pmarvig,

You are suggesting an additional security measure. You want the approver to receive a one-time password (OTP) via SMS or email, which you would need to input to complete the approval process correct?

0 Kudos

pmarvig
New Contributor II
New Contributor II
In response to DixshantValecha

‎01/22/2024 08:47 PM

Yes, was exploring on how to secure approval process, particularly for Privilege accesses.

We are looking into ways to prevent rogue users with Admin SAVROLE to request and approve Privilege Accounts.

SavRole Admin can approve on-behalf, modify workflows, disable any monitoring to external systems (SIEM) hence compromise of SAVROLE ADMIN may not be detectable until later. 

0 Kudos
Copyright © 2024 Khoros, LLC