abcn0 (abcn0) asked a question.
I have a new Governance feature enabled in a SAML application we created to integrate with the Qualitor app.
However, when I enable Governance, it's not like a SCIM app; it doesn't pull automatic entitlements. I had to create them manually. I ended up creating packages in an entitlement package to be requested via request, allowing me to create the SOD for these conflicts.
However, when creating the policy, I created a very simple one where the company is equal to company1. In the preview, I noticed it applied to my user, but in practice, when I applied the policy, my test user wasn't placed in the Assignment tab.
I suspect this is because the app is SAML and not SCIM like Office or Google.
The documentation says that governance works for SAML, SCIM, and Open ID except SWA.
How do I create the bundles and considerations via policy to then set up the SOD for a SAML app without SCIM and SWA? Is it really impossible? Sailpoint can do this for any access profile.
Hi @abcn0 (abcn0) , Thank you for reaching out to the Okta Community!
This is not currently supported. For a standard SAML app, OIG governance is limited to managing entitlements for requesting, approvals, and SOD, not for automatic assignment based on policies. Your approach of manually creating entitlements and then using bundles and SOD is the correct way to implement governance for a non-SCIM application within Okta.
You can suggest can suggest a Feature Enhancement on the Okta Community page by going to the Community→ Ideas tab. Features suggested in our community are reviewed and can be voted and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and it being implemented.
More details here.
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.
Collect them all. Learn a new skill and earn a new Okta Learning badge.
Just released: More Okta Community badges just added