Attribute Sync For Inactive Identities

imagavis · April 22, 2025, 7:11pm

Hi Team,

We are currently syncing the PII data to one of the downstream systems from Sailpoint. We clear this attribute in Sailpoint Identity post a specific date as the source HR system will stop sending this data to Sailpoint once it’s been 30 days since the user is terminated

Now the question is how do we trigger the attribute sync for this downstream system from Sailpoint as the identity and the account both are inactive / disabled.

Thanks!

sunnyajmera · April 22, 2025, 7:40pm

Enhancement: Exclude Inactive Identities from Attribute Sync! - Announcements / Product News - SailPoint Developer Community

Inactive (long-term) identities will be excluded from the attribute sync process except when:

The identity just became inactive (long-term). In this scenario, the system provisions one last sync to handle for OU moves, deletions, etc. specified in a Before Provisioning rule.
The administrator requests it via the Synchronize Attributes action. Synchronize Attributes can also be called via /beta/identities/:identityId/synchronize-attributes. - TRY THIS

imagavis · April 24, 2025, 3:41pm

Thanks @sunnyajmera for the insights.

There is an option in the source under attribute sync to Sync the configured attributes for all accounts in the system. Does it include inactive identities or it only includes active identities?

sunnyajmera · April 24, 2025, 5:40pm

That will include inactive identities.