I have tried @entitlements(privileged:true) which retrieves all privileged entitlements but I want to be able to see only the ones that an identity has. Is this possible?
You can use below query to extract the list of users who have privileged entitlement assigned of the requested source:
(source.name.exact:“sourcename” AND privileged:true)
1 Like
or try this search query
@access(privileged:true)
1 Like
This extracts all users who have privileged entitlements assigned, but what I need is to extract all privileged entitlements that a user has assigned. Basically to extract all privileged entitlements that user “John Doe” has assigned.
Follow below steps:
- Search the user using account name/Employee number
- Click the “Get Report” button located in the upper right corner of the search window.
- Enable the slider labeled “Include access details.”
- Click on the “Generate report” option.
- After the report is generated, click the download button at the bottom right corner of the screen.
- Open the CSV file and apply a filter to the “Access Privileged” column, selecting all entries marked as TRUE.
I hope this information is helpful.
You can use the Search via API (search-post | SailPoint Developer Community). Just use InnerHit to filter privileged entitlements (“query”:“privileged:true”).
Hi @carlosponton !
You can use this query:
@access(privileged:true) AND id:"[identityIDofUser]"
Then you can generate a report and include access details and it will tell you which entitlements are privileged in the report.
Let me know if that helps!