We have a custom frontend developed for Sailpoint IIQ for certain user friendly operations. I have field called owner which should render all the identities as well as workgroups as we have in application creation page of IIQ.
As of now I have utilized below SCIM API for the functionality, which renders only the identities. http://localhost:8080/identityiq/scim/v2/Users?filter=displayName eq “xxxx”.
Is there any way we can render workgroup name as well on the same?
I stick to use SCIM api rather than creating custom API to render both. Please help me with your ideas
Hey @Sangavay, thanks for posting this question. I am asking around internally to see if anyone knows the answer to your question. Please allow us a little time to look into this for you and we will circle back with some insights.
Here is what I have learned: The SCIM endpoint you are using (/scim/v2/Users) most likely will only return Identity objects, not Workgroups (even though a Workgroup is technically a special Identity object). I think the solution for you, if you need to achieve this, will be to implement a custom REST endpoint which can return both Identity and Workgroup objects.
If you would like to go this route, you may wish to create a ticket with Customer Support to help solve this, as it could be specific to your environment. You can open a support ticket at support.sailpoint.com. If you do get an answer from support, we would love to see you come back to this thread and share the results.
With the Loopback connector, workgroups can be managed like groups on any application. This may be helpful in managing workgroups. The loopback connector would be just another application, which can be managed through SCIM.