cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Privilege/Role deletion history in SAP IDM

Go to solution
Sankar_Aravind
Participant

on ‎02-01-2021 3:33 PM

0 Kudos

Hi Team,

Good day.

Could you please advise if there is any view/table available to see the history of removed privilege/role to the users in mass ?

i am able to see the deleted ones in History of each user in IDM UI, but i am looking for all the users.

I have gone through the table, idmv_OVALUE_basic_all but its not giving the details of the users. Tried some queries through IDMV_LINKAUDIT_EXT, but did not help to see the history of privilege removals to users.

please advise.

Thanks,

Aravind.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

todor_petrov
Contributor
‎02-01-2021 4:28 PM

Hi Aravind,

Normally all relations between persons and roles/privileges are in the link table - mxi_link.

There, if you search for mcLinkState = 2 will give you only the removed ones (e.g. inactive links). Then you will need some joins with other tables to get the right this and other entry types, which represent the correlation between the entry types - e.g. MX_PERSON to MX_ROLE or MX_PRIVILEGE. For the case you look for - MX_PERSON should be the THIS and the role/privilege should be the OTHER entry type.

Further filters can be applied to this table as well, since it contains all the needed information, but keep in mind that this table can grow a lot in size, so be careful when executing queries against it. Always use NON-locking statements for selects to prevent impact on the running system.

BR,

Todor

Show replies
Show replies

Answers (0)

Ask a Question