This API is used to check if granting some additional accesses would cause the subject to be in violation of any SOD policies. Returns the violations that would be caused.
Client Error - Returned if the request body is invalid.
ErrorResponseDto
401
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
ListAccessProfiles401Response
403
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
ErrorResponseDto
404
Not Found - returned if the request URL refers to a resource or object that does not exist
ErrorResponseDto
429
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
ListAccessProfiles429Response
500
Internal Server Error - Returned if there is an unexpected error.
ErrorResponseDto
HTTP request headers
Content-Type: application/json
Accept: application/json
Example
$IdentityWithNewAccess=@"{
"identityId" : "2c91808568c529c60168cca6f90c1313",
"accessRefs" : [ {
"type" : "ENTITLEMENT",
"id" : "2c918087682f9a86016839c050861ab1",
"name" : "CN=InformationAccess,OU=test,OU=test-service,DC=TestAD,DC=local"
}, {
"type" : "ENTITLEMENT",
"id" : "2c918087682f9a86016839c0509c1ab2",
"name" : "CN=InformationTechnology,OU=test,OU=test-service,DC=TestAD,DC=local"
} ]
}"@# Predict SOD violations for identity.try{$Result=ConvertFrom-JsonToIdentityWithNewAccess-Json$IdentityWithNewAccessStart-V2024PredictSodViolations-V2024IdentityWithNewAccess$Result# Below is a request that includes all optional parameters# Start-V2024PredictSodViolations -V2024IdentityWithNewAccess $IdentityWithNewAccess }catch{Write-Host$_.Exception.Response.StatusCode.value__"Exception occurred when calling Start-V2024PredictSodViolations"Write-Host$_.ErrorDetails}
Client Error - Returned if the request body is invalid.
ErrorResponseDto
401
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
ListAccessProfiles401Response
403
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
ErrorResponseDto
404
Not Found - returned if the request URL refers to a resource or object that does not exist
ErrorResponseDto
429
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
ListAccessProfiles429Response
500
Internal Server Error - Returned if there is an unexpected error.
ErrorResponseDto
HTTP request headers
Content-Type: application/json
Accept: application/json
Example
$IdentityWithNewAccess1=@"{identityId=2c91808568c529c60168cca6f90c1313, accessRefs=[{type=ENTITLEMENT, id=2c918087682f9a86016839c050861ab1, name=CN=Information Access,OU=test,OU=test-service,DC=TestAD,DC=local}, {type=ENTITLEMENT, id=2c918087682f9a86016839c0509c1ab2, name=CN=Information Technology,OU=test,OU=test-service,DC=TestAD,DC=local}], clientMetadata={additionalProp1=string, additionalProp2=string, additionalProp3=string}}"@# Check SOD violationstry{$Result=ConvertFrom-JsonToIdentityWithNewAccess1-Json$IdentityWithNewAccess1Start-V2024ViolationCheck-V2024IdentityWithNewAccess1$Result# Below is a request that includes all optional parameters# Start-V2024ViolationCheck -V2024IdentityWithNewAccess1 $IdentityWithNewAccess1 }catch{Write-Host$_.Exception.Response.StatusCode.value__"Exception occurred when calling Start-V2024ViolationCheck"Write-Host$_.ErrorDetails}
