Hi There,
We are submitting the access request through this API, https://sailpoint.api.identitynow.com/v3/access-requests. However, we are unable to track the user request in the UI. Additionally, we cannot see the events for the submitted identities.
Thanks,
HArish G
Hi Harish,
Have you gone through the below api ?
It appears there is an idea proposing more visibility of requests in the UI, but for now, API is the only way to go, and even then there are some shortcomings.
Because the create-access-request API is asynchronous, there is no Id returned that you can later track.
One option is to use the access-request-status API and filter on the client side. You can use the requested-for query parameter to at least filter it down to the identity the access is requested for, but you’ll have to filter further on the client side to find the access request record.
Here’s an example of how I’d find the access request for a user AMONTALVO who requested the SAP role ZFS1_PTP_FIORI_PUR_REQ_APP. I’m going to use the PowerShell SDK. I happen to know their name identity attribute is 204919, or their personnel number.
$identity_id = (get-betaidentities -filters 'alias eq "204919"').id
get-accessrequeststatus -requestedfor $identity_id | where-object {$_.name -eq "ZFS1_PTP_FIORI_PUR_REQ_APP"
Here is the resulting PSObject
Alternatively, there is a way you can do this in the UI by searching account activities. You need to utilize the @accountRequests nested object. Knowing both the name of the requestor and the name of the access they’re requesting, I can use the following search query
@accountRequests(attributeRequests.value:"ZFS1_PTP_FIORI_PUR_REQ_APP") AND recipient.name:"Aaron Montalvo"
This is the resulting account activity you find
Thank you @mcheek for your king help.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
