AD Entitlement Owner Not Displayed in ISC

Identity Security Cloud (ISC) ISC Discussion and Questions
1

Hi Team,

Is there a way to map the owner of an entitlement from our AD sources to the corresponding owner in Active Directory? The SailPoint team mentioned that we can either use the API to update entitlement owners individually, or manually select the owner from the dropdown in the UI. However, we’re looking for a more automated approach.

Currently, the process we use to sync entitlements from our AD sources doesn’t seem to offer an option to map attributes directly. Could this be configured under the “Account Schema” section of the source setup? Do you have any insights or suggestions on how we might achieve this?

Regards,

Pavan. G

2

I would write a script that iterates through your AD groups and takes the managedBy attribute and makes a call using the API to set the owner attribute.

3

Hi Vincent, thank you for your response. Could you please share the script and API so that we can work on it?

4

@pavankumar11 you can write a workflow which can update the entitlement owner field using the API

5

Thanks for the update, Shantanu. Since we are not using any workflow, is there an alternative method available?

6

Beta APIs are available to update owners via a external script

7

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.