Description

Organizations need a fast, secure, and automated way to immediately terminate identities in the event of an emergency. This session introduces a SailPoint Identity Security Cloud Workflow designed to instantly disable user access by changing their Lifecycle State. Originally built to be triggered through third-party API calls, this solution has been enhanced to leverage SailPoint’s Interactive Forms, enabling direct execution from the Launchpad without the need for external integrations or intervention by a user with elevated permissions.

This demonstration will explore the workflow architecture, key automation steps, and how this process eliminates administrator intervention, ensuring faster, more secure offboarding while minimizing security risks. Whether you are an engineer, administrator, or security professional, this session will provide insights into workflow automation, best practices, and real-world applications.

image1920×1001 95.3 KB

Hi @kkilafwasru,

How do you handle the risk that SailPoint might later change the LCS and reactivate the account? (For example, if the calculated LCS differs from the one calculated the day before)

Especially when you have different LCS used to easily notify manager of the coming expiration of a user ? (for Contractors Use Case)

In our context, we chose to use a dedicated LCS Red Button and using transform we block all automatic updates except to the inactive LCS.

If needed, identity can be unblocked using manual action into ISC.

I’m interesting by your feedback on this specific point.