We are running IDNow and not ISC, and I am looking for a quick functional tutorial on building an email alert generated when a user is deprovisioned from an specific application we have integrated. Havent found anything on the usual sources which has been helpful to date. Thanks
Here’s a workflow - it uses the Account Provisioning Completed event and filters on Active Directory target and operation “Disable”, then it sends an email to the user’s manager:
{
"id": "",
"name": "AD Account Disable Manager Notification",
"description": "",
"created": "2023-12-07T15:54:10.546345511Z",
"modified": "2024-08-16T19:51:56.12770413Z",
"modifiedBy": {},
"definition": {
"start": "Get Identity",
"steps": {
"End Step — Success": {
"type": "success"
},
"Get Identity": {
"actionId": "sp:get-identity",
"attributes": {
"id.$": "$.trigger.recipient.id"
},
"description": null,
"nextStep": "Get Identity 1",
"type": "action",
"versionNumber": 2
},
"Get Identity 1": {
"actionId": "sp:get-identity",
"attributes": {
"id.$": "$.getIdentity.managerRef.id"
},
"description": null,
"nextStep": "Send Email",
"type": "action",
"versionNumber": 2
},
"Send Email": {
"actionId": "sp:send-email",
"attributes": {
"body": "<p><img src=\"https://instance-test.api.identitynow.com/imagePath.png\" width=\"200\"> <br><br></p>\n<p>Hello,</p>\n<p>The SailPoint IdentityNow system has disabled an account for ${displayName}.</p>\n<p>If you have any questions, contact your administrator.</p>\n<p>This is an FYI and no action is required by you.</p>\n<p>This email has been automatically generated by the SailPoint IdentityNow system. Any reply to this email will not be received. Please use one of our contact methods for questions regarding this email.</p>\n<ul>\n<li><strong>Email helpdesk@customer.com</strong></li>\n<li><strong>Self Service through OKTA, using the Service Now tile</strong></li>\n<li><strong>By Phone, 24x7: <br>USA and Canada Remote: 1-555-555-5555 </li>\n</ul>\n<p>Thank you,</p>\n<p>The Global Service Desk</p>",
"context": {
"displayName.$": "$.getIdentity.attributes.displayName"
},
"from": null,
"recipientEmailList.$": "$.getIdentity1.attributes.email",
"subject": "Account Disabled For ${displayName}"
},
"description": null,
"nextStep": "End Step — Success",
"type": "action",
"versionNumber": 2
}
}
},
"enabled": true,
"executionCount": 121,
"failureCount": 48,
"creator": {},
"owner": {,
"trigger": {
"type": "EVENT",
"attributes": {
"filter.$": "$.accountRequests[?(@.accountOperation == \"Disable\" && @.provisioningTarget == \"Active Directory\" && @.provisioningResult == \"committed\")]",
"id": "idn:post-provisioning"
}
}
}
1 Like
When trying to upload new trigger, I am getting a Feature Unavailable error.
Hi @nathanwray,
Try uploading the attached WF, after replacing the creator and modified fields and see if it works for you.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.