Create Identity Attribute using API

When using the sp-config to move an Identity Profile, there is an error if any of the Identity Attributes do not exist in the importing tenant.

"exceptionMessage": "Attributes in Object Config referenced by Attributes on Identity Profiles \"[adDistinguishedName, remainingListOfAttributes...

To resolve this required manually typing in the Display Name of each Identity Attribute like so:

This calls this endpoint

https://tenant.api.identitynow.com/shelby/identityAttribute/identityAttributes

Is there a way to script this so attributes do not need to be typed out via the UI?

There currently is not a beta or v3 API that will create new identity attributes, and I’m not aware of any CC API that can do this as well. Can you please submit an idea to add this as a new endpoint to the identity profiles collection, and share the link to the idea here?

Idea created:

https://ideas.sailpoint.com/ideas/GOV-I-2605

It looks like there is a cc API for updating identity attributes. @Ramiro Do you have an example of how to invoke cc/api/identityAttribute/create?

Here’s an example for an attribute called Sample Attribute (unsearchable)

POST https://{{org}}.api.identitynow.com/cc/api/identityAttribute/create
Content-Type: application/json
Body: {“displayName”:“Sample Attribute”,“multiValued”:false,“namedColumn”:false,“searchable”:false,“silent”:false,“standard”:false,“system”:false,“sources”:[{“properties”:{“ruleName”:“Cloud Promote Identity Attribute”},“type”:“rule”}],“name”:“sampleAttribute”,“type”:“string”}

1 Like

If you want to update some fields, you can also first read the identityAttribute like that :

GET https://{{org}}.api.identitynow.com/cc/api/identityAttribute/get?name=sampleAttribute
Accept: application/json

Then update the existing entry, taking the output from the get and put it into the body of the update method, just modifying displayName or other attribute like “searchable” :

POST https://{{org}}.api.identitynow.com/cc/api/identityAttribute/update?name=sampleAttribute
Accept: application/json
Content-Type: application/json
Body: {“displayName”:“Sample Attribute updated”,“multiValued”:false,“namedColumn”:false,“searchable”:false,“silent”:false,“standard”:false,“system”:false,“sources”:[{“properties”:{“ruleName”:“Cloud Promote Identity Attribute”},“type”:“rule”}],“name”:“sampleAttribute”,“type”:“string”}

1 Like

Running into this same issue when trying to import a new identity profile. I’m annoyed that it seems I’ll have to create this manually.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.