Description
SailPoint® is excited to introduce AI-based recommendations for creating account policies across various sources, including Web Services, JDBC, and SCIMs!!
This new feature uses AI to provide tailored policy recommendations during source configuration for provisioning, leveraging the customer’s own data set. By addressing the challenge of configuring attributes for deep governance and holistic identity security, this solution aims to streamline the onboarding process and reduce the need for repetitive efforts.
New Capabilities
During source configuration for provisioning, the AI will provide create policy recommendations based on customers’ own data set for all Out of the Box Sources and Generic Sources (Web Services, SCIM and JDBC).
What is the Problem?
One of the key questions consistently brought up when onboarding an application is, “What attributes should we configure to achieve deep governance and holistic identity security while creating an account?” We have found customers often spend significant efforts redoing configurations for account creation policies. Since each organization is different, a “one-size-fits-all” configuration does not work well for security!
What is the Solution?
SailPoint® application onboarding is a lifecycle management capability for enterprise applications that uses artificial intelligence (AI) to easily discover and connect, configure and manage access to ungoverned applications.
This release features:
- Recommendations for source configuration for create account provisioning policies, based on customers’ own data set.
Who is affected?
All Business and Business Plus customers.
Important Dates
Jul 26, 2024 (tentative prod release)
Customer Communications
SaaS Updates | Developer Community
3 Likes
I have an obligation to advise our security team on any AI solution interacting with our data. I reviewed the architecture (Architecture for IdentityNow Based AI Services - Compass) for the AI Services integration with our IdentityNow instance - thank you for posting. Is there a more detailed architecture diagram for the AI Services component or additional information available that explains where the AI Services component is hosted, how the data is processed, and by what technology/technologies?
1 Like
We are close to two weeks passed the tentative production date. When can we expect this feature as this is the major pain point for everybody no doubt? any guidance on a release date or if we can be beta tester that would be great too ?
@pdegraaffiam : this should already be in all tenants of Business and Business+ customers.
Hi @jacob_jones_cinfin : the architecture referred in the link is very similar to what we have for App Onboarding, subtracting the push part. Will get an document on this soon.
Is there a link to the documentation on how to use this new capability?
How can I check if the customer is licensed for the feature? I do not see this option in preview or production and we have the Okta source configured for applications (there may be more config needed but the documentation is poor on that one. They talk about application / applications and schema and entitilements intermixed without clear examples or details).
Paul - the cusotmer needs to be on Business or Business+ subscription. This feature was announced on June on various forums.
You may want to reach out to a CSM and have a demo scheduled to answer your queries.
The customer is a FEDRAMP customer, which is likely the cause. It would be nice if the announcements reference whether it is for commercial or federal customers. At least I do not think I saw a reference to FEDRAMP?
FedRAMP - we have still not rolled this out to FedRAMP customers. We are targeting this to be done within Q3 itself. Announcements for FedRAMP will be made separately.
Please tell me there’s a way to turn this off.
I do not want it and it only serves to get in the way/annoy me and our other admins. I can understand why some people may desire this but, as is with a lot of these “new capabilities”, I seem to be forced into it whether I actually have use for it or not.
Hi Benjamin,
The capability can be turned off (all of them: Discovery, Account correlation recommendations and Create account recommendation) by turning off the product flag associated with this capability in your Org’s instances.
Please get in touch with your Customer Success Manager so this request can be processed.
1 Like
We are past Q3 any indication when this will come to Fedramp customers?
Hi Paul,
This was released to FedRAMP last month (September last week). In case you do not see this capability in your FedRAMP environment, please connect with SailPoint support with your tenant details and we will help you.