Skip to main content

List SOD Policies

This gets list of all SOD Policies. Requires role of ORG_ADMIN

Query Parameters
  • limit int32

    Possible values: <= 250

    Default value: 250

    Max number of results to return. See V3 API Standard Collection Parameters for more information.

    Example: 250
  • offset int32

    Offset into the full result set. Usually specified with limit to paginate through the results. See V3 API Standard Collection Parameters for more information.

  • count boolean

    If true it will populate the X-Total-Count response header with the number of results that would be returned if limit and offset were ignored.

    Since requesting a total count can have a performance impact, it is recommended not to send count=true if that value will not be used.

    See V3 API Standard Collection Parameters for more information.

    Example: true
  • filters string

    Filter results using the standard syntax described in V3 API Standard Collection Parameters

    Filtering is supported for the following fields and operators:

    id: eq name: eq state: eq

    Example: id eq "bc693f07e7b645539626c25954c58554"
Responses

List of all SOD Policies.


Schema array
  • id string

    Policy id

  • name string

    Policy Business Name

  • created date-time

    The time when this SOD policy is created.

  • modified date-time

    The time when this SOD policy is modified.

  • description string

    Optional description of the SOD policy

  • ownerRef object
  • type string

    Possible values: [ACCOUNT_CORRELATION_CONFIG, ACCESS_PROFILE, ACCESS_REQUEST_APPROVAL, ACCOUNT, APPLICATION, CAMPAIGN, CAMPAIGN_FILTER, CERTIFICATION, CLUSTER, CONNECTOR_SCHEMA, ENTITLEMENT, GOVERNANCE_GROUP, IDENTITY, IDENTITY_PROFILE, IDENTITY_REQUEST, LIFECYCLE_STATE, PASSWORD_POLICY, ROLE, RULE, SOD_POLICY, SOURCE, TAG_CATEGORY, TASK_RESULT, REPORT_RESULT, SOD_VIOLATION, ACCOUNT_ACTIVITY]

    DTO type

  • id string

    ID of the object to which this reference applies

  • name string

    Human-readable display name of the object to which this reference applies

  • externalPolicyReference string

    Optional External Policy Reference

  • policyQuery string

    Search query of the SOD policy

  • compensatingControls string

    Optional compensating controls(Mitigating Controls)

  • correctionAdvice string

    Optional correction advice

  • state string

    Possible values: [ENFORCED, NOT_ENFORCED]

    whether the policy is enforced or not

  • tags string[]

    tags for this policy object

  • creatorId string

    Policy's creator ID

  • modifierId string

    Policy's modifier ID

  • violationOwnerAssignmentConfig object
  • assignmentRule string

    Possible values: [MANAGER, STATIC]

    Details about the violations owner. MANAGER - identity's manager STATIC - Governance Group or Identity

  • ownerRef object
  • type string

    Possible values: [ACCOUNT_CORRELATION_CONFIG, ACCESS_PROFILE, ACCESS_REQUEST_APPROVAL, ACCOUNT, APPLICATION, CAMPAIGN, CAMPAIGN_FILTER, CERTIFICATION, CLUSTER, CONNECTOR_SCHEMA, ENTITLEMENT, GOVERNANCE_GROUP, IDENTITY, IDENTITY_PROFILE, IDENTITY_REQUEST, LIFECYCLE_STATE, PASSWORD_POLICY, ROLE, RULE, SOD_POLICY, SOURCE, TAG_CATEGORY, TASK_RESULT, REPORT_RESULT, SOD_VIOLATION, ACCOUNT_ACTIVITY]

    DTO type

  • id string

    ID of the object to which this reference applies

  • name string

    Human-readable display name of the object to which this reference applies

  • scheduled boolean

    defines whether a policy has been scheduled or not

  • type string

    Possible values: [GENERAL, CONFLICTING_ACCESS_BASED]

    Default value: GENERAL

    whether a policy is query based or conflicting access based

  • conflictingAccessCriteria object
  • leftCriteria object
  • name string

    Business name for the access construct list

  • criteriaList object[]

    List of criteria. There is a min of 1 and max of 50 items in the list.

  • type string

    Possible values: [ENTITLEMENT]

    DTO type

  • id string

    ID of the object to which this reference applies to

  • name string

    Human-readable display name of the object to which this reference applies to

  • rightCriteria object
  • name string

    Business name for the access construct list

  • criteriaList object[]

    List of criteria. There is a min of 1 and max of 50 items in the list.

  • type string

    Possible values: [ENTITLEMENT]

    DTO type

  • id string

    ID of the object to which this reference applies to

  • name string

    Human-readable display name of the object to which this reference applies to

Loading...