Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Using Account Attribute as condition User Update Rule

Shreya47
New Contributor III
New Contributor III

‎03/11/2024 04:48 AM

Hi Team,

We were using Users table attributes in the Condition field for User Update Rule. However, along with users attributes we wanted to check if the certain Account attribute is updated with some static value to trigger the User Update Rule. 

For example: If Account Type is not equal to "Admin" then proceed with the required Actions.

Could you please confirm if we can include account attributes along with user attributes in the conditions field for User update Rule.

Labels:
0 Kudos
4 REPLIES 4

AmitM
Valued Contributor
Valued Contributor

‎03/11/2024 05:21 AM - edited ‎03/11/2024 08:23 AM

HI @Shreya47 , yes you can use Account tables in user update rule. Here is one sample that I used :

a.customproperty2 not in (select acc.customproperty3 from Accounts acc, User_accounts ua, Users u, Endpoints e where acc.id=ua.accountkey and ua.userkey=u.id and acc.endpointkey=e.id and e.endpointname='abc' and acc.customproperty3 is not null)

This doc will help as well - https://docs.saviyntcloud.com/bundle/KBAs/page/Content/Obtaining-the-attribute-details-from-tables-o...

Thanks,

Amit

If this answers your query, Please ACCEPT SOLUTION and give KUDOS.

0 Kudos

rushikeshvartak
All-Star
All-Star

‎03/11/2024 08:19 PM

Refer https://forums.saviynt.com/t5/saviynt-knowledge-base/advanced-usage-of-eic-identity-objects-in-provi...

Sample 

Sample query

a.statuskey=1 and a.id in (select distinct us.userkey from User_accounts us, Accounts ac, Account_entitlements1 ae1, Entitlement_values ev where us.accountkey = ac.id and ac.id = ae1.accountkey and ae1.entitlement_valuekey = ev.id and ev.entitlement_value like '%Entitlement value%' and ac.status = 1 and ac.endpointkey = endpoint key)


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Shreya47
New Contributor III
New Contributor III

‎03/14/2024 05:52 AM

Hi All,
We have some Users who will have more than 1 AD accounts (same endpoint). One of them will be considered as Primary account (with no Account Type) and others are considered as Secondary account for which we are updating the Account Type as 'Secondary'. We don't want any update account task to be triggered for these Secondary accounts, it should only trigger for the primary account.

We updated the USER UPDATE RULE as below, but this rule is not getting triggered whenever we change any of the below user attribute.

a.statuskey=1 AND (##a.firstname isupdated##) OR (##a.lastname isupdated##) OR (##a.manager isupdated##) OR (##a.departmentname isupdated##) OR (##a.title isupdated##) OR (##a.companyname isupdated##) OR (##a.state isupdated##) OR (##a.secondaryPhone isupdated##) OR (##a.street isupdated##) OR (##a.customproperty10 isupdated##) OR (##a.customproperty12 isupdated##) OR (##a.region isupdated##) OR (##a.enddate isupdated##) OR (##a.displayname isupdated##) OR (##a.customproperty16 isupdated##) OR (##a.customproperty3 isupdated##) OR (##a.location isupdated##) OR (##a.city isupdated##) OR (##a.customproperty30 isupdated##) OR (##a.employeeType isupdated##) AND
a.userkey like (select distinct us.userkey from User_accounts us, Accounts ac where us.accountkey = ac.accountkey and ac.accounttype not in ('SECONDARY','PRIVILEGED') and ac.status = 1 and ac.endpointkey = 😎

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Shreya47

‎03/14/2024 08:47 PM - edited ‎03/14/2024 08:48 PM

a.userkey like (select distinct us.userkey from User_accounts us, Accounts ac where us.accountkey = ac.accountkey and ac.accounttype not in ('SECONDARY','PRIVILEGED') and ac.status = 1 and ac.endpointkey = 

Wrong HQL

 

a.statuskey=1 AND (##a.firstname isupdated##) OR (##a.lastname isupdated##) OR (##a.manager isupdated##) OR (##a.departmentname isupdated##) OR (##a.title isupdated##) OR (##a.companyname isupdated##) OR (##a.state isupdated##) OR (##a.secondaryPhone isupdated##) OR (##a.street isupdated##) OR (##a.customproperty10 isupdated##) OR (##a.customproperty12 isupdated##) OR (##a.region isupdated##) OR (##a.enddate isupdated##) OR (##a.displayname isupdated##) OR (##a.customproperty16 isupdated##) OR (##a.customproperty3 isupdated##) OR (##a.location isupdated##) OR (##a.city isupdated##) OR (##a.customproperty30 isupdated##) OR (##a.employeeType isupdated##) AND
a.userkey IN (select distinct us.userkey from User_accounts us, Accounts ac where us.accountkey = ac.accountkey and ac.accounttype not in ('SECONDARY','PRIVILEGED') and ac.status = 1 and ac.endpointkey = 

rushikeshvartak_1-1710474496298.png

 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC