I’m currently working with the IdentityNow (ISC) Search API to fetch certification-related events (create, sign-off) as part of a use case I’m testing.
While reviewing the response, I can see fields like the target name, but I don’t see the certification ID being returned. Since the target name may not be unique across certifications, this makes it difficult to reliably identify which certification the event belongs to.
Had a few questions on this:
Is there a reason why the certification ID is not included in the Search API response?
Is there any way (query, config, or expansion) to include the certification ID in the results?
I have a requirement to programmatically automate post-certification tasks for reviewers once certifications reach a signed-off state. This is intended to be implemented as an automated job that periodically scans for certifications that have been signed off.
However, I am encountering a limitation in identifying the final decision-maker (i.e., the user who performed the sign-off action), as this information does not appear to be readily available via search APIs along with the certification ID.
Additionally, I would prefer not to rely on the API approach that was mentioned, as it would require repeated querying and may not scale efficiently with the increasing number of certification campaigns over time.
I have explored the possibility of leveraging event trigger mechanisms to capture this information; however, I would prefer to avoid that approach unless absolutely necessary. My goal is to determine whether there is any configuration-based solution or API enhancement that would allow retrieval of both the certification ID and the sign-off user directly within the search API response.
Got it. Just to add—since the number of campaigns is increasing, you can filter them based on the modified date and where completed = true, as shown in the screenshot.
That said, this is only a suggestion. Since you mentioned you don’t want to proceed with the API approach, I’m currently out of ideas for the direction you prefer.
Can we know what those post-certification tasks are? Is it like sending email to cert reviewer (who signed off the cert)? If yes, we have done this using workflow. For this we have used “Certification signed off“ trigger where you will have all the info that you need.
