Hi, we have a requirement to create an account in SailPoint via API. When we use the create-account API, the task was successful, but the account was not reflected in IDN under the target source.
Are there any documentations where we can see what to specify in the JSON body? We’ve reviewed the current document (create-account | SailPoint Developer Community) but it only mentions to put in property values but did not specify what properties to include.
Hi Ang,
So you need to create the Provisioning Policy and then go in IdentityNow → Connection-> Source → Open the Source and under that Create Account. The poliy will be visible there. Populate the values which you need to send to the target and go to Entitlements tabs mark any entitlement i.e group coming from AD as requestable. Go to Request Center → Request the Entitlement and after which IdentityNow will take care of creating the account based on the attributes you have populated in the Provisioning Policy.
Hope this helps. Please let us know if you need further clarification. I will also recoomend you to go through the follwing document and help understand how IdentityNow works.
Hey Krishna,
So using create-account api we can directly call any source and create account in target system ? This will be very helpful api to directly create account in target without using connector which will solve most of the issues.
We need to create source of course. When you call create account API, you are invoking operation on the source rite by passing source ID. API document doesn’t says that it is limited to Delimited application. We should do more testing to confirm on this.
Yeah that was my understanding that we create local accounts in IdentityNow rather than target and we have used this in our current Production environment as per recommendation from Sailpoint support.
This post still applies. Create account API is detached from connector provisioning. If you run a connector aggregation, any accounts you create via API may be removed if they don’t exist on the source.
