We are using Bootstrap Job to make privileged account as PAM enabled so we are looking for Saviynt Specific attribute/flag which represent whether account is Privileged account and account is PAM enabled or not?
Let us know under which table we can find these flags.
FYI- I know we have 'PRIVILEGED' column in account table but this is fetching value from target (Not Saviynt Specific) .
When we are manually doing any changes in account config then account 'UPDATEDATE' is not modifying, Do we have any attribute which is tracking account config update date?
@UVP As discussed in the last SME call, please find below the query that identifies all priv accounts onboarded to EIC (excludes JIT accounts)
SELECT ac.ACCOUNTKEY AS ID, ac.accountid AS 'accountid', ac.NAME AS 'Account Name',ac.accounttype AS 'Account Type', ep.ENDPOINTNAME AS 'EndpointName', ep.DISPLAYNAME AS 'Endpoint Display Name', epp.PLATFORM_TYPE AS 'PLATFORM' FROM accounts ac INNER JOIN endpoints ep ON ac.ENDPOINTKEY=ep.ENDPOINTKEY AND ep.status = 1 AND ac.status IN (1,'Manually Provisioned') AND ((ac.accounttype IS NOT NULL AND ac.accounttype != '') AND ac.ACCOUNTCONFIG LIKE '%"pamState":"ENABLED"%') AND (ac.accountconfig NOT LIKE '%"justInTime":"true"%') INNER JOIN endpoints_properties epp ON ep.ENDPOINTKEY = epp.ENDPOINTKEY;
And here is the forum link where this query was posted : https://forums.saviynt.com/t5/privileged-access-management/how-to-extract-the-pids-onboarded-for-eac...