Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Organization owner campaign - nothing happens on reject

CredenceIA_11
New Contributor III
New Contributor III

Hi,

Ive configured an Organization Owner campaign. I approved all users except one which was rejected. The campaign was completed and lock.

However no action happens on Reject. 

Please advise how to enable processing on reject - at a minimum, the user should be removed from the organization. The requirement is to actually have the user terminated, if thats possible.

10 REPLIES 10

rushikeshvartak
All-Star
All-Star

Can you share campaign configs


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

CredenceIA_11
New Contributor III
New Contributor III

Hi Rushikesh, 

Sorry for the delay. Please see the screenshots below:

CredenceIA_11_0-1723212962417.png

CredenceIA_11_1-1723212996001.png

CredenceIA_11_2-1723213030088.pngCredenceIA_11_3-1723213048404.png

 

 

CredenceIA_11
New Contributor III
New Contributor III

Heres the certification screenshots: Note that the first record is rejected. However no action is taken.

The user is still a member of the organization. 

We need to 

a) disable the user and deprovision access

b) show a bulk option for users. I couldnt find a way to do bulk and there are over 200 users sometimes per organization.

c) show consult option for users. There is a consult option for Organization but not for users. 

CredenceIA_11_4-1723213229822.png

 

You can create actionable analytics and perform the required action.


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

CredenceIA_11
New Contributor III
New Contributor III

can you share a sample query that we can use?

Take data from cert_orgnaztion 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

CredenceIA_11
New Contributor III
New Contributor III

Thanks. However, we cannot use actionable analytics to disable a user. We can use it to disable account and deprovision access. any suggestions on how to do disable user based on a REJECT action on an Organization Campaign?

 

  • You can use disable account and in disable account json call APi to disable user.

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

CredenceIA_11
New Contributor III
New Contributor III

Thanks. This use case is only for specific users. is there a way to do conditonal calls in REST API to only call disable account api for certain users and not all users by default?

 

You can use condition to check in connection

Sample

     "connection": "${task.userKey.customproperty1 == 'DONOTDISABLE'?'acctAuth':''}",

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.