and more in a single search tool across platforms. Read the announcement here. |
02/19/2024 07:15 AM
Hello team,
We are exploring the Organization feature within Saviynt (TPAG).
We have created few organization and onboarded users into same.
While creating the Organization, we have added few Endpoint, Roles and Entitlements as part of it.
Query?
1. What is the significance of above tabs?
2. We tried logging into saviynt by one of the user which is part of organization and raised request, we could see all other endpoints are also available for request?
3. Similarly, since we added only few entitlements from Endpoints in Organization, end user when tried raising the access, he can see all the entitlements for that EP?
Can someone let me know, how this is suppose to behave? Is this expected behaviour or am I missing any configuration?
Please note the users added as part of Organization have basic end user access.
Solved! Go to Solution.
02/20/2024 10:30 PM
Hello @Manu269,
Can you please check if that user's SAV role has organization selected?
For Ref:- https://forums.saviynt.com/t5/identity-governance/mapping-roles-endpoints-entitlements-to-organizati...
Thanks.
02/21/2024 01:32 AM
@sudeshjaiswal I have added the Organization for following fields in the SAV role.
Show Users in Request Access based on Organizations
Organizations
02/21/2024 01:35 AM
Also restarted the server and logged in with Organization user.
The request access for self screen shows all the EP, Role configured in the system.
Anyhow, only subset of EP , Ent and Role are included in Organization.
Am i doing any mistake here?
02/25/2024 06:23 PM
02/25/2024 08:04 PM
@rushikeshvartak 1 last qq... what would be the best suggestion to enable specific ep and entitlements for users belonging to particular organization?
02/27/2024 09:30 PM
Access Query and use of Entitlements Customproperty
02/21/2024 01:46 AM
Hello @Manu269,
This is expected behavior.
Thanks,
02/21/2024 02:49 AM
How can we control the access request and other components?
I dont see any writeup for same.
02/22/2024 12:45 AM
Hello @Manu269,
It can be managed in a similar manner how we limit the access request for other users.
For Ref: https://forums.saviynt.com/t5/saviynt-knowledge-base/request-rules-implementation-usecase-for-app-en...
Thanks.
Thanks
02/23/2024 04:31 AM
@sudeshjaiswal The document says its for :
Also, this document is created for AD based logical endpoint or endpoint-filter based endpoint.
Can we have some more documents to verify this please