Password Interceptor with Proxy

originalmths · September 8, 2025, 2:20pm

Hello guys,

Have any of you implemented Password Interceptor with a proxy? Without allowing the DC to communicate with the Sailpoint cloud?

Does the PWI communicate via a proxy or a Virtual Appliance? What challenges did you face with this?

udayputta · September 8, 2025, 6:21pm

Yes. Proxy Server on VA can be added to limit the number of outbound connections the password interceptor uses. It need to be done carefully in both VA and in the the AD. There are steps in the documentation. If you have done it correctly then there is no problem.

originalmths · September 8, 2025, 6:47pm

The PWI will communicate with the proxy server, and the proxy server will be responsible for communicating with the Sailpoint cloud, right?
When does the communication reach the VA? Only to synchronize the password with other endpoints, right? Via Sync Group.

shiva_Idm19 · October 29, 2025, 7:46pm

We are in the same boat and followed the steps in this document @udayputta . currently requests are not routed from the VA proxy.

https://community.sailpoint.com/t5/IdentityNow-Connectors/Configuring-Sources-and-Virtual-Appliances-to-Support-the/ta-p/76693

Do we need to setup the proxy server as directed in this ?

Topic		Replies	Views
Password Interceptor Proxy configuration flatcar proxy --- on dev demo tenant ISC Discussion and Questions identity-security-cloud	3	289	May 14, 2024
Configuring a a tunnel VA trough a proxy ISC Discussion and Questions identity-security-cloud	3	62	June 8, 2025
Doubts during the configuration of VA and firewall settings ISC Discussion and Questions identity-security-cloud	6	145	March 23, 2025
Possible to add proxy to VA after initial config? ISC Discussion and Questions identity-security-cloud	2	39	November 7, 2025
Proxy SSL Certificate Installation on SailPoint ISC VA ISC Discussion and Questions identity-security-cloud , virtual-appliance	2	109	September 16, 2025

Password Interceptor with Proxy

Related topics