ISC SSO for admins Secondary or personal privilege account of Entra ID

shiva_Idm19 · October 31, 2025, 3:18pm

We want to segregate the admin access to different personal privilege accounts of Entra ID. But currently SailPoint assigns he user level at Identity level.

Possible solution:
Create a different identity for personal privilege accounts and add admin level access to this identity. But as this identity is not associated with regular identity, leaver will not remove the access. Also potentially this account will have other application privilege access too, so handling other IGA capabilities such as certification, access request requires custom process.

Any other alternative to this solution?

vkashat · November 4, 2025, 6:52pm

You could integrate the Identity Security Cloud Governance connector, and use it to create roles that grant admin access based on membership in the Entra group

system · January 3, 2026, 6:53pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Best Practice for Allowing Secondary Admin Account to Authenticate into SailPoint ISC ISC Discussion and Questions identity-security-cloud	4	76	February 14, 2026
Secondary Account Creation Based on Entitlement Privilege Level - Implementation Guidance Needed ISC Discussion and Questions identity-security-cloud , provisioning	9	97	January 26, 2026
Manage SailPoint Admin access from Roles ISC Discussion and Questions identity-security-cloud , provisioning	3	464	June 25, 2024
Integrating SailPoint with Identity Security Cloud Governance Connectivity Documentation Feedback saas-con-docs	4	305	July 21, 2025
BeyondTrust Privileged Remote Access: Provisioning with SailPoint, SSO with Entra ID - How To Guide ISC Community Knowledge Base identity-security-cloud , identityiq , provisioning	2	572	February 9, 2025

ISC SSO for admins Secondary or personal privilege account of Entra ID

Related topics