Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

PAMenabled Okta endpoint not visible in privilege request page

Manju_v
New Contributor
New Contributor

‎12/13/2023 12:43 AM - last edited on ‎12/17/2023 10:52 PM by Community Manager

Hi Team, 

Have configure Credential, Credentialless usecase for Okta.  Endpoint is not visible under privilege request page >> Okta.
Have taken care of the configuration. Endpoint is pam enabled. Accounts are pamenabled. After we run deltasync job after updating one of the other attibutes. Endpoint is not available in Okta pam request page. 

Endpoint access query is updated in endpoint. In other attributes able to find Custom Property 43 =  PAMDefaultUserAccountAccessControl.

created role mentioned in pamconfig and added users to the role. 

Manju_v_0-1702456731834.pngManju_v_1-1702456751597.png

Manju_v_2-1702456782757.png

updated apptype key in endpoint properties as per applicationtype table entry

The Okta endpoint pam enabled and Okta accounts are pam enabled. Okta endpoint is not visible on the privilege request page. 

As per documentation, OKTA__APPLICATION_SECURITYSYSTEM  should be created automatically. OKTA_APPLICATION_SECURITYSYTEM FOR Okta is not getting created.  Okta has imported accounts into the Security system and endpoint manually created. 

Any input is appreciated. 

Thanks, 
Manju

[This message has been edited by moderator to merge reply comments]

0 Kudos
4 REPLIES 4

NageshK
Saviynt Employee
Saviynt Employee

‎12/18/2023 06:15 AM

@Manju_v Thanks for posting your question. Few things to verify:

  1. Have you added users to the usergroup? If yes, was it after you ran the delta sync or before?
  2. Is the delta sync job status showing success? And in job details do you see the expected number of endpoints synced?

Thanks

Nagesh K

0 Kudos

Manju_v
New Contributor
New Contributor
In response to NageshK

‎12/19/2023 08:46 PM

Hi Nagesh, 

Thanks for the inputs, I have created usergroup.  Delta sync job is having error have opened support ticket (Saviynt Ticket INC-2012625). 
Below is the error for your reference. 

Manju_v_0-1703047498312.png

Thanks, 
Manju

 



0 Kudos

sk
All-Star
All-Star

‎12/19/2023 10:12 AM

@Manju_v :

  • Does the respective security system has password policy associated(Policy Rule Service Account)?
  • Do you have Emergency Access ID Request Workflow and Emergency Access ID Access Request Workflow configured on the respective security system?
  • Do you have any access query configured for respective endpoint?

Regards,
Saathvik
If this reply answered your question, please Accept As Solution and give Kudos to help others facing similar issue.
0 Kudos

Manju_v
New Contributor
New Contributor

‎12/19/2023 08:55 PM

@NageshK,

For OKTA, remoteapp will be configured by default.  Customer is not using default OKTA URL, they have a specific URL  mysiXXXFe.oktapreview.com.  Is there any changes required on remote app configuration side?

Thanks, 
Manju

0 Kudos
Copyright © 2024 Khoros, LLC