Fetching account details in Workflow

Identity Security Cloud (ISC) ISC Discussion and Questions
,
1

I have requirement that on last role deletion I have to disable account.
In the workflow, I am fetching accounts and putting below condition in compare string
but it is not working.

$.getAccounts.accounts[?(@.hasEntitlements == false)].source.name

Workflow is attached for reference.

image
image1013Ă—423 26 KB

CopyofTestDisable20240427.json (2.3 KB)

2

Hi @REKHASACH –

I would…

  1. Get all of the identity’s entitlements on that source account by using the “Get Access” action with a query parameter for source, or an “HTTP Request” action that calls beta/accounts/:id/entitlements.
  2. Use the “Is Valid” operator to check if the result of (1) is null

You may be able to achieve this via your current design, but if you can’t get that to work, I’ve been able to successfully use this alternate workflow design to meet your requirement.

Thanks,

Alex King

3

Thanks Alex.

But how can I get accounId, as per below article, filters are not allowed in HTTP url.

https://developer.sailpoint.com/discuss/t/support-for-inline-variable-for-http-request-url-field/6250/9

{{$.getAccount.getaccounts[?(@.sourceName=="CM")].id}}

If possible can you share your solution.

4

Hi @REKHASACH ,

What is the error are you facting? Are you unable to get results.
Try with sourceID instead of Sourcename
$.getAccounts.accounts[?(@.hasEntitlements == false)].sourceId

Thanks,
Siva.K

5

Hi Rekha,

This discussion may not have been updated but I believe this issue has been resolved. I was able to use inline variables in URLs in my workflows. Please give it a try.

6

Hi Sharvari,

I used variable step and stored filtered json Path values in variables.

I used that variable into URL

And it worked.

1 Like