- 18 Mar 2025
- 2 Minutes to read
- Print
- DarkLight
Sailpoint IdentityNow
- Updated on 18 Mar 2025
- 2 Minutes to read
- Print
- DarkLight
Sailpoint IdentityNow is a SaaS identity solution to help discover, manage and secure all identity access by providing deeper visibility for increased protection and reduced risk. More information can be found on Sailpoint's website.
Integration Method: API
Tables: Ticket Inventory (99405001), User Access Management (3005), Group Management (3006), Entity Management (3004), Base Event (0)
This integration supports the following events.
Event | Description |
---|---|
Accounts | Retrieves list of accounts |
Account Entitlements | Retrieves entitlements of the account. |
Campaigns | Retrieves campaigns and returns them in a list. |
Certifications | Retrieves list of identity campaign certifications. |
Certificate Access Review Items | Retrieves list of access review items for an identity campaign certification. |
Pending Access Request Approvals | Retrieves list of pending approvals. |
Completed Access Request Approvals | Retrieves list of completed approvals. |
Access Request Approval Summary | Retrieves the number of pending, approved and rejected access requests approvals. |
Access Request Status | Retrieves list of access request statuses. |
Sources | Retrieves lists all the sources in IdentityNow. |
This integration supports the following versions.
SailPoint IdentityNow API version | v3.0 |
Prerequisites
The user should have access to the Sailpoint IdentityNow portal with an account that has the Global Administrator privileges.
The user should have access to the DataBee console.
Configuration Overview
Get instance id and domain name from URL.
Generate API client credentials Client ID and Secret on the SailPoint IdentityNow portal.
Add the Sailpoint IdentityNow data feed integration in the DataBee console with the with the below parameters.
DataBee Parameter
Sailpoint IdentityNow Parameter
Client Key
Client ID
Client Secret
Secret
instance
Instance
domain
Domain
Sailpoint IdentityNow Configuration
Log on to SailPoint IdentityNow portal.
Get Sailpoint identity instance and domain from URL as highlighted below.
In the example below, the values are
instance value: ta-partner11108
domain value: identitynow-demo
Click on <your profile> and then click on Preferences option from the dropdown menu.
Click on the Personal Access Tokens. The Personal Access Tokens tab will be opened and then Click on the New Token button.
New pop will open on right side, enter an appropriate name for the token in the “What is the token for?” input box. Select the scope permissions required to access different APIs and click on the Create button.
Scope permission is required to access the APIs.Endpoint
Permission
Accounts
idn:accounts:read
Account Entitlements
idn:entitlement:read
Campaigns
idn:campaign:read
Certifications
idn:campaign:read
Certification Access Review Items
idn:campaign:read
Pending Access Request Approvals
idn:access-request-approvals:read
Completed Access Request Approvals
idn:access-request-approvals:read
Access Request Approval Summary
idn:access-request-approvals:read
Access Request Status
idn:access-request-status:read
source
idn:sources:read
Copy the Secret and Client ID which will be used for API authentication
DataBee Configuration
Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
Search for the SailPoint IdentityNow and click it as shown below.
Click on the API Ingest option for collection method.
Enter feed contact information and click Next.
In the configuration page, confirm the following:
API Base URL: replace <instance> and <domain> with your Sailpoint IdentityNow instance URL.
Authorization Method: OAuth2
Client Key: paste the Client ID generated earlier in the ServiceNow Platform.
Client Secret: paste the Client Secret generated earlier in the ServiceNow Platform.
Token URL: replace <instance> and <domain> with your Sailpoint IdentityNow instance URL.
Event Types: preselected for all the event types that integration pulls.
Click Submit.
Troubleshooting Tips
Ensure the Client ID and Secret are pasted correctly. Since you cannot view the creds after the 1st time, re-create the creds, paste it on a text editor to ensure no spaces or unexpected characters are included and reconfigure the DataBee feed.
Ensure the Sailpoint IdentityNow scopes/permissions are correct.