Certification for Entra ID "Enterprise Applications" in SailPoint ISC

anujoseIC · March 11, 2025, 2:23pm

Hi Experts,

I’m working on integrating Entra ID, and I’m exploring how certifications can be performed on Enterprise Applications within Entra ID. Specifically, I’d like to understand how these objects are read into SailPoint and whether they are classified as entitlements.

Currently, we have Enterprise Apps in Entra to which both direct cloud users and on-premises AD groups (synced with Azure) are assigned.

To certify the Enterprise App:

I can initiate a certification for the on-prem AD group, which is synced with Azure and is a member of the Enterprise App.
However, for cloud users who are directly assigned, how can their access be recertified? Is this supported by the Entra ID connector or does it require CIEM as well? Additionally, how are Enterprise Apps read into IdentityNow (ISC), and what entitlement type are they categorized under?

system · May 10, 2025, 2:24pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Entra ID - Enterprise App Management ISC Discussion and Questions identity-security-cloud	7	92	June 1, 2025
Entitlement owner certification ISC Discussion and Questions identity-security-cloud , certifications	6	229	April 6, 2025
Group, entitlement Certification ISC Discussion and Questions identity-security-cloud , certifications	3	262	May 11, 2024
Entra ID Application Registration as Entitlement? ISC Discussion and Questions identity-security-cloud , entitlements	3	92	September 11, 2024
Application onboarding and Certifications ISC Discussion and Questions identity-security-cloud	13	307	January 3, 2025

Certification for Entra ID "Enterprise Applications" in SailPoint ISC

Related topics