I need to generate a Birthright AD based on the current life cycle state and the state date, using today’s date as the reference point. Can you help me understand how to achieve this?
Hi @kanusha9
- Create a Transformation: Develop a transformation to calculate lifecycle states such as “active,” “pre-hire,” and “terminated” based on the provided start date. Lifecycle State Transform | SailPoint Developer Community
- Configure Identity Profile Provisioning: Configure the identity profile provisioning settings in alignment with the calculated lifecycle states.
- Role Creation and Configuration: Based on the lifecycle states, create a role. Ensure that membership criteria are established for this role and include the lifecycle reference.
- Assign Birthright Entitlements: Add the relevant Active Directory-related birthright entitlements to the role.
1 Like
Hi
You can generate Transform (Date compare) then use Role with Criteria to add AD access based on the criteria
Steps:
- Create custom attribute (joinerflag) and add date compare transform to it
if start Date is >= current date then value should be Yes - Create role with criteria
Joinerflag = Yes and LifeCyclestate is Active
Let me know if you need more information
Thanks,
Siva.K
1 Like
Hello Anusha,
first of all you should generate transform rule to determine if the date is before o after today’s date, once you have correctly define this attribute you will need to create a role to define the assignment criteria, which should be based on that identity attribute.
you can check the transform documentacion here: Transforms | SailPoint Developer Community And for the roles: Managing Roles - SailPoint Identity Services
Regards,
Pablo
1 Like
Hi @kanusha9,
If transforms and especially lifecycle state transforms are very new to you, I think this webinar might be helpful for you.
1 Like
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.