SailPoint IdentityIQ is a comprehensive identity governance and administration (IGA) platform designed for complex enterprises. It provides full lifecycle and compliance management by automating key processes like provisioning, access requests, access certification, and separation of duties. For detailed information, please refer to the SailPoint IdentityIQ’s official documentation.
Integration Method: Data Collector (API Ingest)
Tables: Detection Finding (2004), User Inventory Info (5003), Application Lifecycle (6002)
This integration supports the following events.
Events | Description |
|---|---|
Users | This endpoint returns all User resources. |
Applications | This endpoint returns all Applications resources. |
Policy Violations | This endpoint returns all Policy violations resources. |
Alerts | This endpoint returns all Alerts resources. |
This integration supports the following versions.
SailPoint IdentityIQ Version | 8.4 |
SailPoint IdentityIQ API Version | 8.3 |
Prerequisites
The user should have access to login into the SailPoint IdentityIQ environment.
The user should have a compatible version of the system in which we can configure the data collector.
The user should have access to the DataBee console.
Configuration Overview
Add the SailPoint IdentityIQ data feed in the DataBee console with the below parameters.
DataBee Parameter
SailPoint IdentityIQ Parameter
Username
Username of SailPoint IdentityIQ Platform
Password
Password of SailPoint IdentityIQ Platform
Base URL
https://<on_prem_instance_ip>:<port>
Data Collector Configuration and Installation
To receive logs from SailPoint IdentityIQ, a Data Collector must be installed and configured.
Follow the steps provided in DataBee's official documentation to complete the configuration. Additionally, refer to data collector installation guide for detailed instructions on installing the Data Collector.
Once configured, the Data Collector receives logs from SailPoint IdentityIQ and transmits them securely to DataBee in an encrypted format.
SailPoint IdentityIQ Configuration
No configuration is needed. Use a username and password of a service user.
DataBee Configuration
Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
Search for the SailPoint IdentityIQ and click it as shown below.
Click on the Data Collector option for the collection method.
Click on the API Ingest option for the polling mechanism.
Enter feed contact information, select the collector which we’ve created previously and click Next.
In the configuration page, confirm the following:
Base URL: Paste the Base URL which would be the IP address and Port of SailPoint IdentityIQ instance.
Request Count: Set to 50
Interval: Set to 1 minute
Event Types: Preselected for all the event types that integration pulls.
In the configure authentication page, confirm the following:
Authorization Method: Basic
Username: Enter the Username of a user account in SailPoint IdentityIQ platform.
Password: Enter the Password of a user account in SailPoint IdentityIQ platform.
Click Submit.
Troubleshooting Tips
If you encounter any issues regarding log forwarding, refer to the DataBee troubleshooting article for detailed guidance.