SailPoint IdentityNow

IdentityNow is a SaaS identity solution to help discover, manage and secure all identity access. IdentityNow provides deeper visibility for increased protection and reduced risk. The built-in identity security best practices simplify administration and eliminate the need for specialized expertise. Deploy rapidly with zero maintenance burden. 

Integration Method: API

Tables: Ticket Inventory, User Access Management, Group Management 

Events: Entitlements, Summary, Approvals: Pending/Completed, Accounts: Details/List, Access Requests,  

Campaigns: Get/List/Certification , Identity Access Reviews

This integration has been tested against the SailPoint IdentityNow v3 API service.

DataBee connects to SailPoint APIs to fetch identity reviews, changes, and more.

SailPoint IdentityNow Setup 

1. Login to your IdentityNow dashboard by using your account credentials.

2. Select Preferences from the dropdown menu which is visible by hovering on the top-right corner of the dashboard.

   

3. Select the Personal Access Tokens option from the left navigation panel. Click on the New Token button. A form will open on the right.

   

   

4. Enter an appropriate description and select the scope and permissions needed for this integration. The scope and permissions needed are summarized here.

   Scope/Permissions	Endpoint
   idn:accounts:read	Accounts
   idn:entitlement:read	Account Entitlements
   idn:campaign:read	Campaigns
   idn:campaign:read	Certifications
   idn:campaign:read	Certification Access Review Items
   idn:access-request-approvals:read	Pending Access Request Approvals
   idn:access-request-approvals:read	Completed Access Request Approvals
   idn:access-request-approvals:read	Access Request Approval Summary
   idn:access-request-status:read	Access Request Status

5. After enabling the required scope permissions, click on Create.

6. Copy the Secret and Client ID which will be used for API authentication.

   

DataBee Configuration

1. To create a data source in the DataBee platform, click on the Add New Data Source button in Your current data sources section.

2. Search for the SailPoint IdentityNow.

3. Select the API Ingest option and enter appropriate details in the Configure Data source form and click on the Next button.

   

4. In the next dialog, select OAuth2 option from the Authentication Method dropdown menu.

5. In the API URL(s) and Token URL input boxes, replace instance and domain with your respective instance name and domain name of your SailPoint IdentityNow instance.

   For example if your instance url is like https://instancename.identitynow-demo.com then below are the values:

   Instance: instancename

   Domain: identitynow-demo

   API Base URL: https://instancename.api.identitynow-demo.com

6. Provide the Client ID and Secret generated earlier when generating API credentials. Enter the Client Key and Client Secret input boxes, respectively.

   

   TOKEN URL: https://.api..com/oauth/token

   API URLs: Enter the following API URLs in order, replacing with your organization’s instance.

   https://.api..com/v3/accounts

   https://.api..com/v3/campaigns

   https://.api..com/v3/certifications

   https://.api..com/v3/access-request-approvals/pending

   https://.api..com/v3/access-request-approvals/completed

   https://.api..com/v3/access-request-approvals/approval-summary

   https://.api..com/v3/access-request-status

   https://.api..com/v3/accounts

   https://.api..com/v3/accounts//entitlements

   https://.api..com/v3/certifications

   https://.api..com/v3/certifications//access-review-items