Hello Experts,
I've got an IDM report that i'm wanting to extend to include the IDM role unique id.
Here's an extract of my sql:
select a.avalue as firstname,b.avalue as lastname,c.avalue as displayname,e.mskey,p.avalue as role,null as privilege from
mxiv_sentries a
inner join mxiv_sentries b on a.mskey=b.mskey
inner join mxiv_sentries c on b.mskey=c.mskey
inner join customPersonRoles e on c.mskey=e.mskey
inner join mxiv_sentries p on e.mskey=p.mskey
inner join mxiv_sentries f on p.mskey=f.mskey where
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND p.attrname='MXREF_MX_ROLE' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND a.attrname ='MX_FIRSTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND b.attrname ='MX_LASTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND c.attrname ='DISPLAYNAME'
This is a screenshot of my destination attempt but the ROLEID attribute is not returning the unique IDM Role number.
Can anybody please advise whether i need to include some additional SQL lines or whether there it's something i can resolve easily in the Destination attributes?
Thanks very much for your help.
Lee
- SAP Managed Tags:
Accepted Solutions (1)
Steffi/Peter thanks both for your responses. It probably goes to show how little I know about getting this information out off IDM but I'm learning a little at a time.
The purpose of the report is to get a list of all users and all their access assignments (IDM Role, Auto Privilege and Direct Privileges).
My report has 2 steps, the 1st step you can see from the screenshot retrieves the MSKEY for all users in our system and holds them in the customPersonRoles table. This table is used by the second step which is the Combine privileges to report task.
My full sql looks like this:
select a.avalue as firstname,b.avalue as lastname,c.avalue as displayname,e.mskey,p.avalue as role,null as privilege from
mxiv_sentries a
inner join mxiv_sentries b on a.mskey=b.mskey
inner join mxiv_sentries c on b.mskey=c.mskey
inner join customPersonRoles e on c.mskey=e.mskey
inner join mxiv_sentries p on e.mskey=p.mskey
inner join mxiv_sentries f on p.mskey=f.mskey where
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND p.attrname='MXREF_MX_ROLE' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND a.attrname ='MX_FIRSTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND b.attrname ='MX_LASTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND c.attrname ='DISPLAYNAME'
union
select a.avalue as firstname,b.avalue as lastname,c.avalue as displayname,e.mskey,N'Auto_Priv' as role,p.avalue as privilege from
mxiv_sentries a
inner join mxiv_sentries b on a.mskey=b.mskey
inner join mxiv_sentries c on b.mskey=c.mskey
inner join customPersonRoles e on c.mskey=e.mskey
inner join mxiv_sentries p on e.mskey=p.mskey where
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND p.attrname='MX_AUTOPRIVILEGE' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND a.attrname ='MX_FIRSTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND b.attrname ='MX_LASTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND c.attrname ='DISPLAYNAME'
union
select a.avalue as firstname,b.avalue as lastname,c.avalue as displayname,e.mskey,N'Direct_Priv' as role,p.avalue as privilege from
mxiv_sentries a
inner join mxiv_sentries b on a.mskey=b.mskey
inner join mxiv_sentries c on b.mskey=c.mskey
inner join customPersonRoles e on c.mskey=e.mskey
inner join mxiv_sentries p on e.mskey=p.mskey where
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND p.attrname='MXREF_MX_PRIVILEGE' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND a.attrname ='MX_FIRSTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND b.attrname ='MX_LASTNAME' AND
b.mskey IN (SELECT mskey FROM MXIV_SENTRIES WHERE attrname='MX_ENTRYTYPE' AND searchvalue = 'MX_PERSON')
AND c.attrname ='DISPLAYNAME'
order by mskey,role,privilege
My current output looks like this:
Where it is showing "202!!ROLE" at the moment I want this to show the IDM Unique Role id
Thanks again I appreciate your help.
Lee
Answers (5)
| User | Count |
|---|---|
| 93 | |
| 10 | |
| 10 | |
| 9 | |
| 9 | |
| 7 | |
| 6 | |
| 5 | |
| 5 | |
| 4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.