Sailpoint

Version: 1.1.0

The SailPoint Identity Security Cloud Platform is purpose-built for today’s enterprise demands, delivering an intelligent, autonomous identity foundation that securely fuels your business.

Connect Salesforce with LogicHub

  1. Navigate to Automations > Integrations.
  2. Search for Sailpoint.
  3. Click Details, then the + icon. Enter the required information in the following fields.
    • Label: Enter a connection name.
    • Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
    • Verify SSL: Select option to verify connecting server's SSL certificate (Default is Verify SSL Certificate).
    • Remote Agent: Run this integration using the LogicHub Remote Agent.
    • Tenant: Tenant for the SailPoint API.
    • Client Id: Client Id for the SailPoint API.
    • Client Secret: Client secret for the SailPoint API.
  4. After you've entered all the details, click Connect.

List Access Profiles

This API returns a list of Access Profiles.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
ParamsJinja-templated JSON containing the params for the SailPoint API. Example: '{"limit": 10,"offset": 20}'Optional

Output

JSON containing the following items:

{
   "result":[
      {
         "id":"2asdfasdfasdfasdf602a3",
         "name":"TEST User",
         "description":"Add the TEST",
         "created":"2021-10-19T19:49:06.886Z",
         "modified":"2022-11-15T00:59:10.098Z",
         "enabled":true,
         "owner":{
            "type":"IDENTITY",
            "id":"2casdfqwerrtyufghjvnmxcvbasd64",
            "name":"003988"
         },
         "source":{
            "id":"2casdfewrtyheyjnmfgnsd59e",
            "type":"SOME_TYPE",
            "name":"TEST Directory"
         },
         "entitlements":[
            {
               "id":"2c91asdfwergfgnbbcbesrdfgsdfg1a63",
               "type":"SOME_TYPE",
               "name":"EXAMPLE NAME"
            }
         ],
         "requestable":true,
         "accessRequestConfig":{
            "commentsRequired":false,
            "denialCommentsRequired":false,
            "approvalSchemes":[
               
            ]
         },
         "revocationRequestConfig":{
            "approvalSchemes":[
               
            ]
         },
         "segments":[
            
         ],
         "provisioningCriteria":null
      }
   ],
   "error":null,
   "has_error":false
}

Get Access Profile

This API returns an Access Profile by its ID.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
Access Profile IdJinja-templated text containing the access profile Id for the SailPoint API.Required

Output

JSON containing the following items:

{
  "id":"2asdfasdfasdfasdf602a3",
  "name":"TEST User",
  "description":"Add the TEST",
  "created":"2021-10-19T19:49:06.886Z",
  "modified":"2022-11-15T00:59:10.098Z",
  "enabled":true,
  "owner":{
    "type":"IDENTITY",
    "id":"2casdfqwerrtyufghjvnmxcvbasd64",
    "name":"003988"
  },
  "source":{
  "id":"2casdfewrtyheyjnmfgnsd59e",
  "type":"SOME_TYPE",
  "name":"TEST Directory"
  },
  "entitlements":[
    {
      "id":"2c91asdfwergfgnbbcbesrdfgsdfg1a63",
      "type":"SOME_TYPE",
      "name":"EXAMPLE NAME"
    }
  ],
  "requestable":true,
  "accessRequestConfig":{
    "commentsRequired":false,
    "denialCommentsRequired":false,
    "approvalSchemes":[

    ]
    },
    "revocationRequestConfig":{
    "approvalSchemes":[

    ]
  },
  "segments":[

  ],
  "error":null,
  "has_error":false
}

List Access Profile's Entitlements

This API lists the Entitlements associated with a given Access Profile.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
Access Profile IdJinja-templated text containing the access profile Id for the SailPoint API.Required
ParamsJinja-templated JSON containing the params for the SailPoint API. Example: '{"limit": 10,"offset": 20}'Optional

Output

JSON containing the following items:

{
   "result":[
      {
         "id":"2c9asdfwae4frqwefasd63",
         "name":"SOME_NAME",
         "attribute":"memberOf",
         "value":"SOME_VALUE",
         "sourceSchemaObjectType":"group",
         "description":null,
         "privileged":false,
         "cloudGoverned":false,
         "created":"2021-09-08T22:07:29.352Z",
         "modified":"2023-04-12T09:03:07.461Z",
         "source":{
            "id":"2cqewoirfhjpqiulwfhas;djf7659e",
            "type":"SOURCE",
            "name":"TEST Directory"
         },
         "attributes":{
            
         },
         "segments":[
            
         ],
         "directPermissions":[
            
         ]
      }
   ],
   "error":null,
   "has_error":false
}

List Accounts

This API returns a list of accounts. A token with ORG_ADMIN authority is required to call this API.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
ParamsJinja-templated JSON containing the params for the SailPoint API. Example: '{"limit": 10,"offset": 20}'Optional

Output

JSON containing the following items:

{
   "result":[
     {
       "authoritative":false,
       "name":"TEST.ABC",
       "nativeIdentity":"OU=ENV,OU=Domain Users,DC=corporate,DC=com",
       "description":null,
       "identityId":"0023v5234b5bvfd3f56d352f4b915a43",
       "uuid":"{80234524-6205-4014-b00b-dd323450}",
       "features":"PROVISIONING, GROUP_PROVISIONING, SYNC_PROVISIONING, AUTHENTICATE, MANAGER_LOOKUP, SEARCH, UNSTRUCTURED_TARGETS, UNLOCK, ENABLE, PASSWORD, CURRENT_PASSWORD, NO_PERMISSIONS_PROVISIONING, NO_GROUP_PERMISSIONS_PROVISIONING, GROUPS_HAVE_MEMBERS",
       "locked":false,
       "attributes":{
         "mail":"[email protected]",
         "displayName":"testing",
         "distinguishedName":"OU=ENV,OU=Domain Users,DC=corporate,DC=com",
         "employeeID":"656785",
         "title":"TCS Resource",
         "employeeNumber":"5678567",
         "objectType":"user",
         "objectguid":"{80356784-6205-4567-b00b-dd356785678}",
         "memberOf":[
         	"CN=Test-US,OU=ENV,OU=Domain Users,DC=corporate,DC=com"
         ]
       },
       "sourceName":null,
       "modified":"2023-06-03T18:40:16.138Z",
       "has_error":false,
       "id":"923d9823745692384y5tb",
       "error":null,
       "hasEntitlements":true,
       "disabled":false,
       "manuallyCorrelated":false,
       "systemAccount":false,
       "uncorrelated":true,
       "sourceId":"2c2345yt234t234t234r3659e",
       "created":"2023-03-25T18:11:07.976Z"
     }
   ]
   "has_error":false,
   "error":null
}

Get Account Details

This API returns the details for a single account based on the ID. A token with ORG_ADMIN authority is required to call this API.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
Account IdJinja-templated text containing the account Id for the SailPoint API.Required

Output

JSON containing the following items:

{
   "authoritative":false,
   "name":"TEST.ABC",
   "nativeIdentity":"OU=ENV,OU=Domain Users,DC=corporate,DC=com",
   "description":null,
   "identityId":"0023v5234b5bvfd3f56d352f4b915a43",
   "uuid":"{80234524-6205-4014-b00b-dd323450}",
   "features":"PROVISIONING, GROUP_PROVISIONING, SYNC_PROVISIONING, AUTHENTICATE, MANAGER_LOOKUP, SEARCH, UNSTRUCTURED_TARGETS, UNLOCK, ENABLE, PASSWORD, CURRENT_PASSWORD, NO_PERMISSIONS_PROVISIONING, NO_GROUP_PERMISSIONS_PROVISIONING, GROUPS_HAVE_MEMBERS",
   "locked":false,
   "attributes":{
      "mail":"[email protected]",
      "displayName":"testing",
      "distinguishedName":"OU=ENV,OU=Domain Users,DC=corporate,DC=com",
      "employeeID":"656785",
      "title":"TCS Resource",
      "employeeNumber":"5678567",
      "objectType":"user",
      "objectguid":"{80356784-6205-4567-b00b-dd356785678}",
      "memberOf":[
         "CN=Test-US,OU=ENV,OU=Domain Users,DC=corporate,DC=com"
      ]
   },
   "sourceName":null,
   "modified":"2023-06-03T18:40:16.138Z",
   "has_error":false,
   "id":"923d9823745692384y5tb",
   "error":null,
   "hasEntitlements":true,
   "disabled":false,
   "manuallyCorrelated":false,
   "systemAccount":false,
   "uncorrelated":true,
   "sourceId":"2c2345yt234t234t234r3659e",
   "created":"2023-03-25T18:11:07.976Z"
}

Delete Account

This API submits an account delete task and returns the task ID. This operation can only be used on Flat File Sources. Any attempt to execute this request on the source of other type will result in an error response with a status code of 400. A token with ORG_ADMIN authority is required to call this API.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
Account IdJinja-templated text containing the account Id for the SailPoint API.Required

Output

JSON containing the following items:

{
   "error_response":{
      "detailCode":"404 Not found",
      "trackingId":"6164cdbe00b44a6eae591dc8a2fcf00f",
      "messages":[
         {
            "locale":"en-US",
            "localeOrigin":"DEFAULT",
            "text":"The server did not find a current representation for the target resource."
         },
         {
            "locale":"und",
            "localeOrigin":"REQUEST",
            "text":"The server did not find a current representation for the target resource."
         }
      ],
      "causes":[
         
      ]
   },
   "error":"An error occurred: 404 Client Error:  for url: https://envestnet-sb.api.identitynow.com/v3/accounts/23q45t4gewrw435",
   "has_error":true
}

List Account Activities

This gets a collection of account activities that satisfy the given query parameters.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
ParamsJinja-templated JSON containing the params for the SailPoint API. Example: '{"limit": 10,"offset": 20}'Optional

Output

JSON containing the following items:

{
   "result":[
     {
       "name":"8523uo4yg5iu234y5g3i4h5ba",
       "executionStatus":"COMPLETED",
       "targetIdentitySummary":{
         "id":"2894537gh2380947ty298374rty",
         "name":"TEST ABC"
       },
       "clientMetadata":null,
       "items":[
         {
           "id":"5238974ytr293874r9",
           "name":"5828347yt203874ry023498ru3b69",
           "requested":"2023-05-23T12:33:01.456Z",
           "approvalStatus":"PENDING",
           "provisioningStatus":"FINISHED",
           "requesterComment":null,
           "reviewerIdentitySummary":null,
           "reviewerComment":null,
           "operation":"REMOVE",
           "attribute":"assignedRoles",
           "value":"UltiPro - active [cloudLifecycle-16234532452345",
           "nativeIdentity":null,
           "sourceId":"IdentityNow",
           "accountRequestInfo":null,
           "clientMetadata":null,
           "removeDate":null
         }
       ],
       "warnings":null,
       "completionStatus":"SUCCESS",
       "errors":null,
       "modified":"2023-05-23T12:33:01.626Z",
       "has_error":false,
       "id":"85239408fj23948urt08273yh4r5fa",
       "requesterIdentitySummary":null,
       "error":null,
       "completed":"2023-05-23T12:33:01.622Z",
       "type":"Identity Refresh",
       "created":"2023-05-23T12:33:01.462Z"
     }
   ]
   "has_error":false,
   "error":null
}

Get Account Activity

This gets a single account activity by its id.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
Account Activity IdJinja-templated text containing the account activity Id for the SailPoint API.Required

Output

JSON containing the following items:

{
   "name":"8523uo4yg5iu234y5g3i4h5ba",
   "executionStatus":"COMPLETED",
   "targetIdentitySummary":{
      "id":"2894537gh2380947ty298374rty",
      "name":"TEST ABC"
   },
   "clientMetadata":null,
   "items":[
      {
         "id":"5238974ytr293874r9",
         "name":"5828347yt203874ry023498ru3b69",
         "requested":"2023-05-23T12:33:01.456Z",
         "approvalStatus":"PENDING",
         "provisioningStatus":"FINISHED",
         "requesterComment":null,
         "reviewerIdentitySummary":null,
         "reviewerComment":null,
         "operation":"REMOVE",
         "attribute":"assignedRoles",
         "value":"UltiPro - active [cloudLifecycle-16234532452345",
         "nativeIdentity":null,
         "sourceId":"IdentityNow",
         "accountRequestInfo":null,
         "clientMetadata":null,
         "removeDate":null
      }
   ],
   "warnings":null,
   "completionStatus":"SUCCESS",
   "errors":null,
   "modified":"2023-05-23T12:33:01.626Z",
   "has_error":false,
   "id":"85239408fj23948urt08273yh4r5fa",
   "requesterIdentitySummary":null,
   "error":null,
   "completed":"2023-05-23T12:33:01.622Z",
   "type":"Identity Refresh",
   "created":"2023-05-23T12:33:01.462Z"
}

Search

Performs a search with the provided query and returns a matching result collection.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input NameDescriptionRequired
ParamsJinja-templated JSON containing the params for the SailPoint API. Example: '{"limit": 10,"offset": 20}'Optional
BodyJinja-templated JSON containing the body for the SailPoint API. Example: '{"indices": ["identities"],"queryType": "SAILPOINT","queryVersion": "5.2","query": {"query": "name:a*","fields": ["name"],"timeZone": "America/Chicago","innerHit": {"query": "source.name:"Active Directory"","type": "access"}}}'Required

Output

JSON containing the following items:

{
   "result":[
      {
         "privileged":false,
         "displayName":"513",
         "name":"513",
         "standalone":true,
         "id":"2c911ui2y34giu123yg4db44d1",
         "source":{
            "name":"Active Directory",
            "id":"21i2ou35hg138o424e9"
         },
         "attribute":"primaryGroupID",
         "type":"ENTITLEMENT",
         "value":"678",
         "_type":"access",
         "_originalType":"identity",
         "_version":"v7"
      }
   ],
   "error":null,
   "has_error":false
}

Release Notes

  • v1.1.0 - Added 6 new actions: List Accounts,Get Account Details,Delete Account,List Account Activities,Get Account Activity and Search
  • v1.0.3 - Added 3 new actions: List Access Profiles, Get Access Profile and List Access Profile's Entitlements