I would like to understand whether it is possible to display custom metadata attributes of entitlements directly within certification campaigns.
For example, if entitlements have additional attributes such as environment (prod/non-prod), data classification, risk score, or application owner, can these fields be made visible to reviewers during certification (either as columns or within the access details view)?
Currently, I understand that standard attributes are available out-of-the-box, but it is unclear whether custom/meta attributes can be:
Exposed directly in the certification UI
Configured through schema or campaign settings
Used to enhance reviewer decision-making without additional customization
If this is supported, could you please clarify:
What configuration steps are required to surface these attributes?
Are there any limitations on which attributes can be displayed?
Can these attributes also be leveraged for flags, policies, or recommendations within the campaign?
The goal is to provide reviewers with better context (such as sensitivity or environment) so they can make more informed access decisions.
The Default Certification UI cannot be customized to add additionnal atttributes (like metadatas).
In the idea portal :https://ideas.sailpoint.com/ there are some ideas around certifications, but you can always add new Ideas, and if many other users vote for the idea Sailpoint will then review it and probably integrated it if possible.
Currently Metadata can be used for searching access items, also during campaign configuration for filtering (example : @accessModelMetadata(key:yourMetatadakey) to get all access items that have a particular key) and details can be display on the UI or exported in the report.
Also during a certification a reviewer can click on access item details, but checked that and metadata informations are not displayed.
In some usecase, information can be added into access items description.
Thank you for the detailed response and clarification!
I understand that the default certification UI does not currently support displaying custom metadata attributes directly, and that metadata is mainly usable for filtering, search, and reporting purposes.
I have a couple of follow-up questions to better understand possible workarounds:
Access Item Details View
You mentioned that metadata is not displayed in the access item details during certification. Just to confirm—there is no supported way (even via configuration or API-driven UI extensions) to surface these attributes in that view today?
Reports as an Alternative
Since metadata can be included in reports, would it be feasible to generate a pre-certification report containing these attributes and share it with reviewers as a reference? Have you seen this approach used effectively in practice?
Description Field Workaround
You suggested adding information into the access item description. In your experience, is this the most commonly used workaround? Are there any limitations (e.g., length, formatting, maintainability) we should be aware of?
Policies / Recommendations
While metadata cannot be shown in the UI, can it still be leveraged behind the scenes for:
Certification policies (e.g., flag high-risk entitlements)
Recommendation engines or decision support
Or is its usage limited strictly to filtering and search?
I agree that raising an idea in the portal is the right long-term approach, and I will consider submitting one for this enhancement.
Appreciate your insights—this helps clarify the current limitations and possible approaches.