IFS Assyst ITSM as Front-End for Access Requests with SailPoint ISC for Provisioning - Design Guidance

shiva_Idm19 · March 19, 2026, 2:45pm

Hi everyone,

I’m currently working on a design where IFS Assyst ITSM will act as the front-end system for access requests and approvals, while SailPoint Identity Security Cloud (ISC) will handle the provisioning and identity lifecycle management.

I wanted to get some guidance and hear from others who may have implemented a similar pattern.

Proposed Flow (High-Level)

User submits access request in IFS Assyst
Approval workflow is handled entirely within IFS Assyst
Once approved, Assyst sends the request to SailPoint ISC
ISC processes the request and performs provisioning via connectors (AD, SaaS apps, etc.)
Status (success/failure) is sent back to Assyst (with an Email)

I also came across a similar discussion for BMC Helix ITSM integration with SailPoint ISC:
https://developer.sailpoint.com/discuss/t/bmc-helix-itsm-integration-with-sailpoint-idn/98705

It looks like @KRM7 you had a similar requirement with BMC and mentioned that the solution can be achieved using workflows.

Could you please share the high-level implementation steps on how you achieved this?

From my understanding, out-of-the-box ISC workflows do not directly support application provisioning, so I’m trying to understand how this was handled in your implementation (e.g., via Access Request APIs, triggers, or any custom orchestration).

Any guidance would be really helpful.
@YGupta22

trettkowski · March 21, 2026, 11:46pm

Hi @shiva_Idm19

I think you can accomplish this as long as your IFS Assyst ITSM supports HTTP Requests and has some basic logic for checking the status of a request.

You can leverage the access request API endpoints to submit requests. You’ll need to make the entitlements requestable on the ISC side and make them have no approvals since you want all the approvals done on the ITSM side.

To track the status of the request, your ITSM will need to record the access request ID that is given when you submit an access request, then it will need to frequently check the status of the request to ensure it was completed successfully.

Let me know if you have any questions or concerns on the approach!

shiva_Idm19 · March 26, 2026, 4:46pm

Thanks Tyler for your reply, but this typically involves calling various SailPoint APIs 5 times(Refer below screenshot for details).
So we are doing a POC on creating a workflow in which Assyst will do one call and SailPoint ISC will do the heavy lifting

Topic		Replies	Views
Can we replicate this IdentityIQ use case in SailPoint Identity Security Cloud (ISC)? ISC Discussion and Questions workflows , identity-security-cloud	3	165	August 10, 2025
SailPoint Support as Owner - for Request Approval in ISC ISC Discussion and Questions identity-security-cloud , provisioning , access-requests	4	71	April 13, 2026
Generic Service Desk - ITSM Integration - Only Provisioning ISC Discussion and Questions identity-security-cloud , provisioning , connectors	2	114	April 20, 2025
Service Now Integration into SailPoint ISC ISC Discussion and Questions workflows , apis , identity-security-cloud , provisioning	8	373	September 15, 2025
Access request Decision ISC Discussion and Questions identity-security-cloud	2	92	March 24, 2025

IFS Assyst ITSM as Front-End for Access Requests with SailPoint ISC for Provisioning - Design Guidance

Related topics