Sailpoint IdentityNow
  • 18 Mar 2025
  • 2 Minutes to read
  • Dark
    Light

Sailpoint IdentityNow

  • Dark
    Light

Article summary

Sailpoint IdentityNow is a SaaS identity solution to help discover, manage and secure all identity access by providing deeper visibility for increased protection and reduced risk. More information can be found on Sailpoint's website.

Integration Method: API

Tables: Ticket Inventory (99405001), User Access Management (3005), Group Management (3006), Entity Management (3004), Base Event (0)

This integration supports the following events.

Event

Description

Accounts

Retrieves list of accounts

Account Entitlements

Retrieves entitlements of the account.

Campaigns

Retrieves campaigns and returns them in a list.

Certifications

Retrieves list of identity campaign certifications.

Certificate Access Review Items

Retrieves list of access review items for an identity campaign certification.

Pending Access Request Approvals

Retrieves list of pending approvals.

Completed Access Request Approvals

Retrieves list of completed approvals.

Access Request Approval Summary

Retrieves the number of pending, approved and rejected access requests approvals.

Access Request Status

Retrieves list of access request statuses.

Sources

Retrieves lists all the sources in IdentityNow.

This integration supports the following versions.

SailPoint IdentityNow API version

v3.0

Prerequisites

  • The user should have access to the Sailpoint IdentityNow portal with an account that has the Global Administrator privileges.

  • The user should have access to the DataBee console.

Configuration Overview

  1. Get instance id and domain name from URL.

  2. Generate API client credentials Client ID and Secret on the SailPoint IdentityNow portal.

  3. Add the Sailpoint IdentityNow data feed integration in the DataBee console with the with the below parameters.

    DataBee Parameter

    Sailpoint IdentityNow Parameter

    Client Key

    Client ID

    Client Secret

    Secret

    instance

    Instance

    domain

    Domain

Sailpoint IdentityNow Configuration

  1. Log on to SailPoint IdentityNow portal.

  2. Get Sailpoint identity instance and domain from URL as highlighted below.
    In the example below, the values are
    instance value: ta-partner11108
    domain value: identitynow-demo
     

  3. Click on <your profile> and then click on Preferences option from the dropdown menu.
     

  4. Click on the Personal Access Tokens. The Personal Access Tokens tab will be opened and then Click on the New Token button.
     

  5. New pop will open on right side, enter an appropriate name for the token in the “What is the token for?” input box. Select the scope permissions required to access different APIs and click on the Create button.
    Scope permission is required to access the APIs.

    Endpoint

    Permission

    Accounts

    idn:accounts:read

    Account Entitlements

    idn:entitlement:read

    Campaigns

    idn:campaign:read

    Certifications

    idn:campaign:read

    Certification Access Review Items

    idn:campaign:read

    Pending Access Request Approvals

    idn:access-request-approvals:read

    Completed Access Request Approvals

    idn:access-request-approvals:read

    Access Request Approval Summary

    idn:access-request-approvals:read

    Access Request Status

    idn:access-request-status:read

    source

    idn:sources:read

  6. Copy the Secret and Client ID which will be used for API authentication
     

DataBee Configuration

  1. Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
     

  2. Search for the SailPoint IdentityNow and click it as shown below.
     

  3. Click on the API Ingest option for collection method.
     

  4. Enter feed contact information and click Next.
     

  5. In the configuration page, confirm the following:

  • API Base URL: replace <instance> and <domain> with your Sailpoint IdentityNow instance URL.

  • Authorization Method: OAuth2

  • Client Key: paste the Client ID generated earlier in the ServiceNow Platform.

  • Client Secret: paste the Client Secret generated earlier in the ServiceNow Platform.

  • Token URL: replace <instance> and <domain> with your Sailpoint IdentityNow instance URL.

  • Event Types: preselected for all the event types that integration pulls.


  1. Click Submit.

Troubleshooting Tips

  • Ensure the Client ID and Secret are pasted correctly. Since you cannot view the creds after the 1st time, re-create the creds, paste it on a text editor to ensure no spaces or unexpected characters are included and reconfigure the DataBee feed.

  • Ensure the Sailpoint IdentityNow scopes/permissions are correct.


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Eddy AI, facilitating knowledge discovery through conversational intelligence