Using a Workflow to allow SailPoint Identity Security Cloud (ISC) to send certification (access review) information to an external system. After the certification is completed in the external system, ISC should receive the completion status or related information back.
Current Situation:
We are planning to integrate ISC with an external approval system to handle a complex certification process that involves more than three levels of manager approvals. The internal workings of the external approval system are not our concern.
Based on the official API documentation, we understand that this can be achieved using an External Trigger within a Workflow. However, the documentation breaks this down into multiple components (e.g., Generate External Trigger OAuth Client, Execute Workflow via External Trigger).
As of now, we do not have a clear method or format for how ISC can receive data sent back from the external system. Are there any reference examples or use cases for this kind of integration? Specifically, how can ISC receive data after the external system completes the certification process?
Please advise if there is any guidance or documentation we can refer to.
Initiate Workflow_1
Triggers the initial workflow, including the certification review data to be processed externally.
Transmit Certification Data to BPM
ISC sends the relevant certification campaign items to the external BPM system for approval processing.
Execute BPM Approval Process
The BPM system runs its multi-level approval workflow based on the received certification data.
Compile Approval Results
Prepares the final decision results, ensuring that any revoked items are clearly flagged, and returns them to ISC.
Receive Approval Results (Workflow_2)
Workflow_2 in ISC ingests the approval results from BPM, including any “Revoked” items.
Update Certification Status
ISC updates the campaign items’ status according to the returned results, closing the certification where applicable.
This diagram represents our current assumed scenario. If you have any related case studies or examples, we would appreciate it if you could share them with us.
