Hi Team,
We are going to onboard AWS and GCP application in Sailpoint IdentityNow to manage user, roles and permissions.
Is it mandatory to purchase Cloud Access Management for the above ?
Please let us know what is the pre - requisite for the same
As per the SailPoint documentation, I don’t think you need CAM for managing user provisioning to AWS
Prerequisites (sailpoint.com)
and for GCP
Prerequisites (sailpoint.com)
To manage your cloud (Single or multi) access, more insights in what is happening in terms of access using some Policies and a concept called Guardrails. In short CAM is to monitor existing access but not for user JML.
However I would suggest you to have a word with your SailPoint CSM.
Hope this helps you 
Thank you so much. I did touch base with Sailpoint CSM and got the answer
Hi Colin,
CSM updated that you can use GCP and AWS connector for Provisioning and Aggreation and CAM is not required
As of now, IdentityNow don’t support multiple group objects, so IAM Users are managed as accounts and IAM groups are primary entitlement that are aggregated as a part of entitlement aggregation. However as a part of account aggregation, associated AWS Managed Policies, Customer Manager Policies, Inline Policies are also aggregated and visible as entitlements. AWS Roles are not supported by the AWS Source.
Thanks
Rakesh
Thanks Rakesh. I marked Krishna’s reply as the solution, but I also appreciate the confirmation from your CSM.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.