Need Guidance on Fast-Turnaround Identity Lifecycle Use Cases in SailPoint IdentityNow

Identity Security Cloud (ISC) ISC Discussion and Questions
, ,
1

We’re currently working on integrating several identity lifecycle use cases into SailPoint IdentityNow and would appreciate insights or confirmation from the community. A key requirement across these scenarios is quick turnaround time, especially in operational environments where delays can impact productivity.

Here are the use cases we’re exploring:

  1. New direct employee onboarding – Can we configure site-based approvers for access requests?
  2. Role changes (non-privileged to non-privileged) – What’s the best practice for enabling fast transitions, especially during shift work?
  3. Privileged access requests – How are emergency access workflows typically handled to ensure minimal delay?
  4. Leaver process – While Workday triggers standard deprovisioning, what’s the recommended manual process for emergency account removal?
  5. Inactive users (e.g., no activity for 3+ months) – Can SailPoint detect and automatically disable or remove inactive accounts?
  6. Audit logging – What’s the best way to access logs for tracking access changes and privileged role assignments?
  7. Alias support – Can users log in using short usernames or aliases instead of full email addresses, especially for mobile access?
  8. Role assignment automation – What are best practices for assigning roles based on user attributes (e.g., department, location, job title)? These assignments need to be instant to support real-time operational needs.

Any documentation links, implementation tips, or shared experiences would be greatly appreciated!

2

This is a lot of questions to answer in one topic, so this may get messy. I would consider breaking it up into separate topics.

It would also be good if you included what you have looked at and/or tried so far so that we don’t offer suggestions for things you have tried. It also helps in case you were using the right process, but maybe missed a step or configuration to make it work.

Additionally, if you have looked at other topics here that are similar, linking those so others know what you looked at and why it did not work for your situation can be helpful.

3

Thanks for your remarks Geoff . This is a fresh requirement and we are particularly concerned on the turn around time and emergency deactivation .

If you could spread some light on those or if you know of any topics like this which might have been posted .

4

Have you done a search on the forum and/or compass related to the emergency termination process? In most cases this would be a custom workflow with the customer’s requirements included in it. There are many topics here related.

I would start by looking at @sharvari Community Blog post if you have not started researching this yourself yet, which can be found here: Emergency Terminations of Identities Using IdentityNow

As for Termination Data coming from Workday, it can only come as fast as the scheduled aggregations happen since ISC is pull-based, unless you configure External triggers to kick of workflows from an event in Workday when the change occurs.

5

Thanks Geoff I will get back to you