Hi team,
I have a requirement as below, where I need some suggestions to achieve this via Sailpoint ISC.
For the apps which are access managed via our Sailpoint ISC, we need to produce the Access drift report (Access memberships which are assigned directly in source but not provisioned via Sailpoint ISC Roles) and send it to respective source owner for remediation.
Appreciate your suggestions or pls direct me to any existing threads or topics on the same.
The easiest way to do this would be to leverage the Native Change Detection feature:
There are event triggers or workflows that you can use based on this to send an email or take other action when a native account created has been detected.
To do a one off report of this on what is currently already there, you might be able to use search events to do some analysis of what accounts were created / updated by ISC and collate the delta for remediation.