Get Identity roles (that meets membership criteria)

MattUribe · May 5, 2026, 10:33am

The approach that @punna0001 describes could work - If I’m understanding correctly:

pull the roles and break down the criteria
use the criteria from each role to perform a search:
<roleCriteria> AND attributes.uid:<identity’s uid>
Repeat #2 for each role and return the results

Something else that may be useful - I just remembered that there is a community tool provided by @ethompson during Developer Days 2024 that previews role changes using a PowerShell script. You can find the post here:

Hopefully that helps.

Matt

Topic		Replies	Views
Using /v3/roles endpoint to query criteria covered identity assignments ISC Discussion and Questions apis , identity-security-cloud	4	106	December 28, 2025
To get list of Identities ISC Discussion and Questions identity-security-cloud	4	533	July 19, 2023
API call or search query to retrieve the list of identities in a Role ISC Discussion and Questions	5	3942	July 19, 2023
Search Query for Roles with zero identities and particular entitlement ISC Discussion and Questions identity-security-cloud , search	4	293	July 30, 2024
Identities list from specific role ISC Discussion and Questions identity-security-cloud	3	230	November 25, 2024

Get Identity roles (that meets membership criteria)

Related topics