Manual Identity Refresh via API

Hello - I am attempting to manually run a identity refresh using the API. I want to run an identity refresh with a filter, similar to how it is done in IIQ. The intention is to run an identity refresh on a single user, filtered by an identity attribute.

I am attempting to do this with the beta API endpoint - /beta/task-execution/run and then with the following keys/values in the body (as instructed by the API documentation):

  • “taskDefinitionId”: “aUniqueId”,

  • “taskDefinitionName”: “aName”,

  • “arguments”: { },

  • “priority”: “LOW”,

  • “org”: “acme-solar”,

  • “executionService”: “SWEEP”,

  • “executionType”: “REST”,

  • “executionPath”: “/taskFulfillment/tasks/run”,

  • “restMethod”: “GET”,

  • “queryParameters”: { },

  • “messageScope”: “MAINTENANCE_TASK”,

  • “payloadType”: “BULK_SYNCHRONIZE_ACCESS_PROFILES”

}

My ultimate question being - how do I find the key values for the identity refresh task? I found my environment’s identity refresh task ID using /beta/task-definitions/, but that does not provide most of the other values needed for the body above.

Any help on this request would be greatly appreciated.

Thanks!

Nick

Hi Nick,

Instead of using the beta/task-execution endpoint, try running this API: POST {{api-url}}/cc/api/system/refreshIdentities

with a body similar to:

{
   "filter" : "uid == \"12345\"",
   "refreshArgs" : {
     "correlateEntitlements" : "true",
     "promoteAttributes" : "true",
     "refreshManagerStatus" : "false",
     "synchronizeAttributes" : "false",
     "pruneIdentities" : "false",
     "provision" : "true"
   }
}

Please see here for more details: https://community.sailpoint.com/t5/IdentityNow-Forum/Identity-Refresh-Task/td-p/157372

6 Likes

Hey @nscotts,

Thanks for posting. Let us know if the above helps; we would love to hear if this worked for you!

This is exactly what I was looking for, thanks!

1 Like

Awesome, very glad to hear this; we hope to see more of you around the Developer Community in the future!