Description
Access Request Recommendations now include individual entitlements, in addition to roles or access profiles.
Problem
Until now, users could be guided through the access request process with recommendations for roles and access profiles to align their access with their teammates. However, organizations that relied heavily on individual entitlements and had not yet invested in a robust role model were missing out.
Solution
SailPoint has added entitlement recommendations, which analyzes users’ access across multiple dimensions to identify the right entitlements for them to request. It looks at users who share similar access patterns already as well as users who share the same manager, job title, department, or location and then does an analysis of their access to identify patterns and discern appropriate recommendations.
Note: Recommendations will only be made for entitlements that allow access requests.
Who is affected?
Users at any Identity Security Cloud customer with the recommendations feature enabled—and who allow entitlement requests—will begin to see entitlements displayed alongside roles and access profiles on the Recommendations page of the Request Center. These are based on scoring from our algorithms. As before, only the top 15 recommendations will appear at any given time.
Action Required
Because our algorithm relies on shared identity profile attributes of manager, jobTitle, department, and location, it is important that those attributes be mapped and populated for users in your tenant.
Also, entitlements to be considered for recommendations must be configured to allow access requests.
Important Dates
Sandbox rollout: May 8, 2025
Production rollout: May 14-19, 2025
Additional Resources
Documentation: Access Recommendations - SailPoint Identity Services