Web service connector Add Entitelement operation

Identity Security Cloud (ISC) ISC Discussion and Questions
1

Hi All,

We are working on a web service connector implementation with identitynow. Where the web service has put operation. What it does is whatever response you pass in it simply replaces the complete user object. So when we add a new entitlement we have to send the existing entitlement information as well otherwise it will replace the all entitlements with just new entitlement.
Can somebody help with how to design the response in a way that we can send this additional information.
The problem is with both add and remove operations.

Thanks
Pradeep

2

The solution here would be to have before operation rule which will get latest entitlement from end system and then using what you have incoming in plan and what is currently assigned to user you can decide your final body.

e.g You get Provisioning plan to remove entitlement A,B and user currently has A,B,C then you send only C.

In before operation rule, make call to end system and get latest entitlement for user and compare with incoming plan.

1 Like
3

Hi Chirag,

Thanks, Can you also help me how can we write this rule. Also is there a way to use apis or webservices to deploy the same. if you have any sample please do share with us.

Thanks
Pradeep

4

More details: https://community.sailpoint.com/t5/IdentityNow-Articles/IdentityNow-Rule-Guide/ta-p/76665

To apply rule to source
use source json patch : update-source | SailPoint Developer Community

[ {

            "op": "replace",

            "path": "/connectorAttributes/connectionParameters/2/beforeRule",

            "value": "Azure Pagination"

}

]

The index starts with 0 in UI. If you have 3 end points in UI, first one is zeroth.

1 Like