- 22 Aug 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
SailPoint IdentityNow
- Updated on 22 Aug 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
SailPoint IdentityNow is a SaaS identity and access management (IAM) solution.
Related Enforcement Actions
SailPoint IdentityNow - Create Certification Campaign
Types of Assets Fetched
This adapter fetches the following types of assets:
- Users
- Application Extensions
- Roles
- Groups
- User Extensions
- SaaS Applications
- Accounts/Tenants
- Rules
Parameters
Host Name or IP Address (required) - The hostname or IP address of the SailPoint IdentityNow server. The field format is 'https://sailpoint.api.identitynow.com/v3'
Client ID and Client Secret (required) - The Client ID and Client Secret for an account that has the Required Permissions to the API.
To obtain the Client ID and Client Secret via your personal access token, see Personal Access Tokens.SSO Provider (Only for accounts with SaaS Management capability) - If your organization uses Okta for SSO, this adapter can be set as an SSO provider see Connecting your SSO Solution Provider.
Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to Advanced Configuration for Adapters.
- Use alias as employee ID - Select this option to set the alias field as the employee ID.
- List of private account attributes to include - Enter a list of private attributes to include with the users. Leave the field empty to include none.
- Add Users Core Filters - Select this option to fetch only users that satisfy the core filters. For more information, see "add-core-filters" in Get a list of public identities.
- Fetch Entitlements of Accounts and Access Profiles - Select this option to fetch entitlements of accounts and access profiles.
To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.
APIs
Axonius uses the following APIs:
Required Permissions
The value supplied in Client ID must be associated with credentials that have Read-only permissions to fetch assets.
The SailPoint personal access token must be assigned to the following grant types:
Adapter Integration Setup
While to access SaaS data you need to grant roles and/or permissions that include write capabilities, the adapter only actually reads data from the application.
- Login to IdentityNow as an organizational administrator (ORG_ADMIN).
- Navigate to the Admin UI, click on the Dashboard dropdown and select the Overview page.
- Select Preferences from the drop-down menu under your username, then Personal Access Tokens on the left.
- Click New Token and enter a meaningful description to help differentiate the token from others.
- Click Create Token to generate and view the two components that comprise the token: the Secret and the Client ID.
Copy the Client ID and Client Secret. These are required for the Adapter connection parameters.
Supported From Version
Supported from Axonius version 4.7