Hello All,
How are we currently monitoring Entitlement Aggregation failures?
We have configured the Account Aggregation Completed trigger to monitor failures. This setup sends an email and creates an incident in ServiceNow when account aggregation fails. However, we do not see a similar trigger or option available for Entitlement Aggregation.
Could you please confirm if there is a way to monitor entitlement aggregation failures, or suggest an alternative approach?
Thanks,
Anirban
The way we could achieve failure notification for Account Aggregations was by using “Account Aggregation Completed” trigger and filter on the sources we would need this on and then parse the status and perform necessary actions like notify admins using emails or raise SNOW tickets.
However, SailPoint doesn’t currently support entitlement aggregations as a trigger as noted in their docs: This event trigger does not include entitlement aggregations.
Doc link : Account Aggregation Completed | SailPoint Developer Community
Workaround Approach :
You can disable scheduled entitlement aggregations at the source level and instead create separate workflows per source. Use a Scheduled Trigger to call this API using HTTP action: import-entitlements | SailPoint Developer Community
Pass the source ID, capture the response, and extract the id of the task.
Then, pass that id to another HTTP action and use this endpoint to check the task status using : get-task-status | SailPoint Developer Community
Based on the result, you can take appropriate actions (alerts to admins using email or SNOW tickets etc).
It’s a bit decoupled from native source config, but seems like the only workaround approach to track entitlement aggregation outcomes from workflow level.
If you’re trying this approach, please let us know how it goes
Thanks,
Arshad.
@AllIT drop this in search and subscribe : “Add Entitlement Failed”
How is Add Entitlement Failed event going to help capture entitlement aggregation failure events on the source?
Submit to ideas portal. Try (status:Error after runs) or Perform a search query aggregation api and filter on entitlements
Well, the author of this post is Anirban, so I’ll let him decide on that. But there’s no direct search query that would fetch you the failed entitlement aggregation events.
Like I said above, I have detailed out an API based workflow approach to call both the Entitlement Aggregation API to capture the task ID and make another get tasks status API to achieve the use case.