Hi there,
We are seeing that some entitlement owners’ info is not showing up even though the entitlements have proper owner in the managedBy attribute in AD sources after performing entitlement aggregations. Is there a workaround for this? Please advice.
Hi @robin82
Unfortunately, SailPoint doesn’t assign owner to entitlements using this attribute. I have heard other developers used a PowerShell script to accomplish this, however. You’d pull the owner from AD, then use an API endpoint to update the ownership:
Is there a way with bulk entitlement upload to ease this scenario?
Not that I’m aware of, however if you have the same owner for multiple entitlements, you might be able to utilize this endpoint:
update-entitlements-in-bulk | SailPoint Developer Community
It is limited to 50 entitlements per call though, so you’d still have to update in batches.
You can try using the IdentityNow Bulk Access Profile and Role Importer.
There is an option to update the Entitlement Owner.
Hi Jabes,
is that a UI option in ISC?
No, it is a tool (ruby script) designed to bulk create and update Roles, Access Profiles, and Entitlements.
You will need to download the zip file, configure the config.json file, and set up the CSV with the details of the Entitlements.
IdentityNow Bulk Access Profile and Role Importer - Compass
