Skip to main content

Get SOD Policy By ID

This gets specified SOD policy. Requires role of ORG_ADMIN.

Path Parameters
  • id string required

    The ID of the object reference to retrieve.

    Example: ef38f94347e94562b5bb8424a56397d8
Responses

SOD policy ID.


Schema
  • id string

    Policy id

  • name string

    Policy Business Name

  • created date-time

    The time when this SOD policy is created.

  • modified date-time

    The time when this SOD policy is modified.

  • description string

    Optional description of the SOD policy

  • ownerRef object
  • type string

    Possible values: [ACCOUNT_CORRELATION_CONFIG, ACCESS_PROFILE, ACCESS_REQUEST_APPROVAL, ACCOUNT, APPLICATION, CAMPAIGN, CAMPAIGN_FILTER, CERTIFICATION, CLUSTER, CONNECTOR_SCHEMA, ENTITLEMENT, GOVERNANCE_GROUP, IDENTITY, IDENTITY_PROFILE, IDENTITY_REQUEST, LIFECYCLE_STATE, PASSWORD_POLICY, ROLE, RULE, SOD_POLICY, SOURCE, TAG_CATEGORY, TASK_RESULT, REPORT_RESULT, SOD_VIOLATION, ACCOUNT_ACTIVITY]

    DTO type

  • id string

    ID of the object to which this reference applies

  • name string

    Human-readable display name of the object to which this reference applies

  • externalPolicyReference string

    Optional External Policy Reference

  • policyQuery string

    Search query of the SOD policy

  • compensatingControls string

    Optional compensating controls(Mitigating Controls)

  • correctionAdvice string

    Optional correction advice

  • state string

    Possible values: [ENFORCED, NOT_ENFORCED]

    whether the policy is enforced or not

  • tags string[]

    tags for this policy object

  • creatorId string

    Policy's creator ID

  • modifierId string

    Policy's modifier ID

  • violationOwnerAssignmentConfig object
  • assignmentRule string

    Possible values: [MANAGER, STATIC]

    Details about the violations owner. MANAGER - identity's manager STATIC - Governance Group or Identity

  • ownerRef object
  • type string

    Possible values: [ACCOUNT_CORRELATION_CONFIG, ACCESS_PROFILE, ACCESS_REQUEST_APPROVAL, ACCOUNT, APPLICATION, CAMPAIGN, CAMPAIGN_FILTER, CERTIFICATION, CLUSTER, CONNECTOR_SCHEMA, ENTITLEMENT, GOVERNANCE_GROUP, IDENTITY, IDENTITY_PROFILE, IDENTITY_REQUEST, LIFECYCLE_STATE, PASSWORD_POLICY, ROLE, RULE, SOD_POLICY, SOURCE, TAG_CATEGORY, TASK_RESULT, REPORT_RESULT, SOD_VIOLATION, ACCOUNT_ACTIVITY]

    DTO type

  • id string

    ID of the object to which this reference applies

  • name string

    Human-readable display name of the object to which this reference applies

  • scheduled boolean

    defines whether a policy has been scheduled or not

  • type string

    Possible values: [GENERAL, CONFLICTING_ACCESS_BASED]

    Default value: GENERAL

    whether a policy is query based or conflicting access based

  • conflictingAccessCriteria object
  • leftCriteria object
  • name string

    Business name for the access construct list

  • criteriaList object[]

    List of criteria. There is a min of 1 and max of 50 items in the list.

  • type string

    Possible values: [ENTITLEMENT]

    DTO type

  • id string

    ID of the object to which this reference applies to

  • name string

    Human-readable display name of the object to which this reference applies to

  • rightCriteria object
  • name string

    Business name for the access construct list

  • criteriaList object[]

    List of criteria. There is a min of 1 and max of 50 items in the list.

  • type string

    Possible values: [ENTITLEMENT]

    DTO type

  • id string

    ID of the object to which this reference applies to

  • name string

    Human-readable display name of the object to which this reference applies to

Loading...