Hello All,
Is it possible to submit a user creation request from ServiceNow to add new users to the NERM source in SailPoint Identity Security Cloud? Can this be achieved using APIs alone, or is integration through the ServiceNow Service Catalog module required? Please let me know if there is a more efficient or recommended approach to achieve this integration.
Thanks,
Harish G
have you integrated SNOW service catalog? yes integration of service catlog is required:
Why would the ServiceNow catalog integration be required?
I would love to hear from you if there is any best approach for the question user asked. and you are most welcome.
I’d love for you to answer my question, but absent that, I will provide my own.
The Service Catalog Integration is an option, not a requirement. It also depends on what type of account OP wishes to create in NERM.
In either circumstance, because both products have APIs allowing user creation, then the answer is yes, this can be achieved using APIs alone. How those get created depends on a few things
Are we creating user accounts or profile accounts in NERM?
If we’re creating users with the intention on granting them access to perform functions from within NERM, then you could use SailPoint to perform the account creation and access provisioning by making a call to the /v3/access-requests API endpoint. The Service Catalog Integration uses this endpoint, but it’s not required that you use that application. Granted, this assumes that user already has an identity established, as the Service Catalog Integration won’t work without an existing identity Id.
You could also bypass SailPoint completely if you wish to create those users, though I wouldn’t necessarily recommend it for users you’re wanting to create non-profile accounts for in NERM.
For profiles, that is a little different. A need for a new profile assumes that this is a completely new user without an existing identity and you want NERM to be the authoritative source to establish an identity for them in ISC.
In this case, I would consider it appropriate to use the NERM profile APIs to directly create those account and let ISC aggregate them to create identities. If you wanted to use this approach, you’d have to build your own custom ServiceNow workflows as this is not a use case that’s supported by the Service Catalog Integration.