Writeback ServiceNow Request to AD through IDN workflow

Hi Everyone,

We have a use case as follows for Leaver.

1. Create a Service Now request when lifecycle state changes to “Inactive”
2. Take the response from this service request id and write it back to AD “description” attribute over disable operation.

What we have done so far?

1. Created a workflow to create a snow request and disable AD operation through workflow.

What we are looking for ?

1. Need a way to store this service now request on Identity Attribute through workflow on user to fetch it through before provisioning rule later.

Issues:

No API endpoint available to directly update the identity attribute of user through Beta\V3\CC.

Need some inputs if anyone have achieved this use case through any other means. Appreciate your response.

Thanks,
Gautham

It really depends on what options you are ok with.

One potential solution could be to create a separate Delimited Text source that will hold the ticket information. This source can then be setup as the source for an identity attribute and thus can be synced to AD.

The Accounts API (Accounts | SailPoint Developer Community) allows you to manage Accounts in a Delimited Text source, so you could insert / update an account using the same workflow.

Thank you @sauvee . I have thought of this solution but maintaining this new delimited source upto date with flow of new users is another overhead we are trying to avoid.

We have another workaround to use create account API using the response through get API and use create operation to update attribute. (This would work irrespective of source type) but at the same time it might create data discrepancy on users reference ID in IDN.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.