Hi all ,
I am new to Sailpoint IDN workflow creation , i have a basic idea on how to build a workflow . But the current use case I’m working on is to send mail to the manager of the identity .Can anyone help me regarding how to achieve this functionality ?
Hi @erlingjoseph7,
You can use a workflow like this :
In trigger you can use Identity attribute change Triggers - SailPoint Identity Services. This will trigge workflow each time if an identity attribute change. You can also trigge only if specific are changed :
Then you use “Get Identity” for retrieve identity information including manager action by passing the trigged identity id :
And then you can use send email for sending email to the manager.
Resources :
-
Workflow documentation : Creating and Managing Workflows - SailPoint Identity Services
-
This developper day video also can help : Workflows: Getting Started and Advanced - Content / Video Library - SailPoint Developer Community
2 Likes
Hi @erlingjoseph7 ,
Okay as mentioned there are various types of triggers in sailpoint workflow ,Triggers - SailPoint Identity Services you can refer this link for various types of workflow triggers .
In this use case you need to use Identity Attribute Change trigger for triggering a workflow .
You can refer to the image share by @baoussounda for reference , its a basic template for creating a workflow to trigger an email on Identity attribute change .
Next if you click on send email it shows a field to enter the recipient email address .
In that place you can use this https://jsonpath.com/ to find the JSON path of manager from the identity object .
{
"alias": "Dhanush kumar",
"attributes": {
"cloudAuthoritativeSource": "13171xxxxxxxxxx79",
"cloudStatus": "UNREGISTERED",
"displayName": "Dhanush kumar",
"email": "[email protected]",
"firstname": "Dxxxxxar",
"identityState": "ACTIVE",
"internalCloudStatus": "UNREGISTERED",
"jobCode": "FCA044",
"lastSyncDate": "xxxxxxx",
"lastname": "xxxx",
"middlename": "xxxx",
"uid": "Dhxxxxxar",
"unitCode": "FCIA"
},
"created": "2024-05-22T12:00:37.290Z",
"emailAddress": "[email protected]",
"id": "a45297xxxxd5689",
"identityStatus": "UNREGISTERED",
"isManager": false,
"lastRefresh": "2024-06-14T19:24:32.908Z",
"lifecycleState": null,
"managerRef": {
"id": "9a0d60fedxxxxxxxxc16509c98e",
"name": "sisvanthkumar.xxxxxxl-Admin",
"type": "IDENTITY"
},
"modified": "2024-06-18T01:52:17.754Z",
"name": "Dhxxxxxxxar",
"processingState": null
}
This is a sample structure of an identity .
Using the Json path we can get the manager details in order to send the email address ,
it would be some thing like this
$.getIdentity.managerRef.id.attributes.email
You can also create an email template using HTML to send the mail to the recipient .
If you have any doubts you can reach out .
Thanks !!
2 Likes
Can you get Manager’s email with this?
Yes @iamnithesh , we can get it
Hi there, when I use this in the workflow. I get the following:
invalid parameter type received for recipientEmailList, expected string or array of strings (type: Error Parsing Input, retryable: false): invalid parameter type received for recipientEmailList, expected string or array of strings
Any suggestions?
Many thanks 
Thank you! Works a treat. Particularly useful as I needed the manager first name too
Template Context (for anyone who may find this useful)
{
“identityEnddate.$”: “$.getIdentity.attributes.endDate”,
“identityFirstname.$”: “$.getIdentity.attributes.firstname”,
“identityName.$”: “$.getIdentity.name”,
“managerName.$”: “$.getIdentity1.attributes.firstname”
}
1 Like
I just wanted to explain what happens in the $getIdentity1 , thats why i mentioned $.getIdentity.managerRef.id
1 Like
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.