Disabling Account of an Identity

callhimalan · April 12, 2023, 7:30am

Hello,

I am trying to disable all accounts that are tied to an identity. I know that identity.setAttribute("IIQDisabled, true) can set it to disable, but somehow I can only disable the identity itself instead of all the applications it belongs to. Does anyone know how to fix this issue?

  SailPointContext context = SailPointFactory.getCurrentContext();
  
  List&lt;String> applications = context.getObjects(Application.class);
  ArrayList&lt;String> information = new ArrayList&lt;String>();
  
  ArrayList&lt;String> info = new ArrayList&lt;String>();
  List&lt;String> identities = context.getObjects(Identity.class);
  String c = "Wilson";
  for (Identity ident : identities) {
    if(ident.getAttribute("displayName").contains(c)){
      ident.setAttribute("IIQDisabled", true);
      return ident;

      //information.add(ident);
      }
  }

brian_weigel · April 12, 2023, 2:47pm

So a couple of notes for you to consider:

To mark an Account as disabled, you need to set the IIQDisabled flag on the Account (Link) itself.
To actually disable the account in the downstream/target system, you will need to create and execute a Provisioning Plan to perform that action. Ideally, you would have some kind of trigger (Lifecycle Event) to kick this process off, and handle the deprovisioning and identity updates in a workflow (e.g. Leaver event and workflow).

Topic		Replies	Views
JDBC Connector - Display account as "Disabled" IIQ Discussion and Questions	3	709	July 19, 2023
Disable Account API ISC Discussion and Questions provisioning	6	461	August 5, 2023
Error while disabling account ISC Discussion and Questions identity-security-cloud , provisioning	11	272	April 28, 2024
Workflow - Disable SailPoint source identity ISC Discussion and Questions workflows , identity-security-cloud	5	630	July 19, 2023
Disable SailPoint Source Status API call ISC Discussion and Questions	5	1190	July 19, 2023

Disabling Account of an Identity

Related Topics