MSSQL explicit permissions

NishaRai · March 27, 2026, 3:21pm

Which IIQ version are you inquiring about?

8.5p2

Please share any images or screenshots, if relevant.

Share all details about your problem, including any error messages you may have received.

*Hello All,

We are using* Microsoft SQL Server to pull the Database application logins. The issue that we are seeing is that it is not aggregating the explicit permissions which I have shown in the attached screenshot. Does the connector not support these permissions? Please let me know if you have configured this connector before and have been able to aggregate the “Connect/Alter/View” type of permissions.

Thanks,

Nisha Rai

SivaprakashRNTBCI · March 27, 2026, 4:29pm

@NishaRai Have you enabled “Include Permissions” checkbox in account schema?

NishaRai · March 27, 2026, 5:12pm

Thank you so much! I can see them now

NishaRai · April 7, 2026, 11:55am

Hello @SivaprakashRNTBCI , how can i mark these Permissions as entitlements? our requirement is that they need to be included in access reviews

SivaprakashRNTBCI · April 7, 2026, 12:14pm

@NishaRai Permissions are included in certifications by default. Have you tried generating certification for this application?

NishaRai · April 7, 2026, 12:32pm

When I stage an application owner review, the account details shows the includedPermissions as user:SERVER on the Attributes section but not as an individual item in the access review

SivaprakashRNTBCI · April 7, 2026, 12:38pm

@NishaRai Please check if you have enabled “Include Additional Entitlements” option in your certification.

NishaRai · April 7, 2026, 12:49pm

I do have this option selected in the certification.

The account shows the directPermission like this:

SivaprakashRNTBCI · April 7, 2026, 1:04pm

@NishaRai If you have configured exclusion rule, make sure you are not excluding this.

NishaRai · April 7, 2026, 1:29pm

are you promoting the includedPermissions as managed or entitlement in any other way than selecting the include Permission check box?

SivaprakashRNTBCI · April 7, 2026, 1:41pm

@NishaRai No. I have just enabled includedPermissions in the application.

NishaRai · April 7, 2026, 1:43pm

Got it, thank you. Could you please let me know which certification you are using?

NishaRai · April 7, 2026, 1:54pm

I actually had not refreshed the account list with the Refresh assigned, detected roles and promote additional entitlements option.
I can see these entitlements in the access review now.
Thank you so much!

Topic		Replies	Views
Targeted SQL Database account certification - exclude accounts with only specific entitlement IIQ Discussion and Questions identityiq , entitlements	3	62	April 28, 2025
Web services Include permissions aggregation ISC Discussion and Questions aggregation , identity-security-cloud	2	440	February 9, 2024
SQL Aggregation error and tables ISC Discussion and Questions	2	806	July 8, 2022
MSSQL application query to fetch the account details IIQ Discussion and Questions rules , aggregation , identity-security-cloud , identityiq , roles , access-requests , connectors , entitlements	6	727	January 21, 2024
Enhancement: Direct permissions are now available on Accounts detail in Identity Security Cloud Product News identity-security-cloud , new-enhancement	4	211	June 4, 2026

MSSQL explicit permissions

Which IIQ version are you inquiring about?

Please share any images or screenshots, if relevant.

Share all details about your problem, including any error messages you may have received.

Related topics