I’m looking for a way to generate a daily report/subscription via the search function that will capture all changes in users’ managers in the last 24 hours, showing the previous value and new value. I haven’t been able to figure out the correct syntax in search to drill down to these changes. Has anyone come up with something similar?
Hi @ianderso426 ,
-
Identity attributes changes are not directly available on Search Accounts activities and events. As workaround, in our usecase as the manager was synchronize with Active Directory, all synchronization attributes infos are available in events so we captured all manager update in Active Directory in our report. This is not very consistent where for example if the manager is directly updated in AD, Sailpoint will try to synchronize it and it will be part of report even the manager in not really changed in HR source.
-
With Workflow you can capture individual manager change with Identity attribute change trigger.
-
With This API get-historical-identity-events | SailPoint Developer Community you can searh all events about an Identity. It is possible also to filter on events of attributes changed :
With a script you can search all identity modified in last 24 hours and then look in their history if manager is update and build your report.
Thanks