Announcing the SAVIYNT KNOWLEDGE EXCHANGE unifying the Saviynt forums, documentation, training, and more in a single search tool across platforms. Click HERE to read the Announcement.

Provisioning command customization on AWS Instance endpoint.

RMJ
New Contributor III
New Contributor III

we have a requirement to customize the provisioning command  on AWS Instance endpoint connection where if user is part of group A(entitlement) then run this command, else run the other provisioning command.

Ex:

If user is part of CPAM_ADMIN entitlement then run this cmd as below:

"sudo useradd -m -s /bin/bash '${username}' -c '${user?.lastname}.${user?.firstname}/${user?.email}' -g users && echo  ${username}:${password} | sudo chpasswd && sudo usermod -G cpamgrp ${username}"

If user is not part of CPAM_ADMIN entitlement then run this cmd as below:

"sudo useradd -m -s /bin/bash '${username}' -c '${user?.lastname}.${user?.firstname}/${user?.email}' -g users && echo  ${username}:${password}"

1 REPLY 1

NageshK
Saviynt Employee
Saviynt Employee

@RMJ I have responded to this question in the other post you submitted. Please close this if both these posts are the same. 

https://forums.saviynt.com/t5/privileged-access-management/cpam-jit-access-permission-segregation-ba...

Thanks,

Nagesh K