Accounts List

GET /accounts

This returns a list of accounts.
A token with ORG_ADMIN, SOURCE_ADMIN, SOURCE_SUBADMIN, or HELPDESK authority is required to call this API.

Request

Query Parameters

detailLevel string

Possible values: [SLIM, FULL]

Determines whether Slim, or increased level of detail is provided for each account in the returned list. FULL is the default behavior.

Example: FULL

limit int32

Possible values: <= 250

Default value: 250

Max number of results to return. See V3 API Standard Collection Parameters for more information.

Example: 250

offset int32

Offset into the full result set. Usually specified with limit to paginate through the results. See V3 API Standard Collection Parameters for more information.

Example: 0

count boolean

If true it will populate the X-Total-Count response header with the number of results that would be returned if limit and offset were ignored.

Since requesting a total count can have a performance impact, it is recommended not to send count=true if that value will not be used.

See V3 API Standard Collection Parameters for more information.

Example: true

filters string

Filter results using the standard syntax described in V3 API Standard Collection Parameters

Filtering is supported for the following fields and operators:

id: eq, in, sw

identityId: eq, in, sw

name: eq, in, sw

nativeIdentity: eq, in, sw

sourceId: eq, in, sw

uncorrelated: eq

entitlements: eq

identity.name: eq, in, sw

identity.correlated: eq

identity.identityState: eq, in

source.displayableName: eq, in

source.authoritative: eq

source.connectionType: eq, in

Example: identityId eq "2c9180858082150f0180893dbaf44201"

sorters comma-separated

Sort results using the standard syntax described in V3 API Standard Collection Parameters

Sorting is supported for the following fields: id, name, created, modified, sourceId, identityId, identity.id, nativeIdentity, uuid, manuallyCorrelated, entitlements, identity.name, identity.identityState, identity.correlated, source.displayableName, source.authoritative, source.connectionType

Example: id,name

Responses

List of account objects

application/json

Schema
Example (from schema)
SlimAccounts
FullAccounts

Schema

Array [

id string

System-generated unique ID of the Object

name stringrequired

Name of the Object

created date-time

Creation date of the Object

modified date-time

Last modification date of the Object

sourceId stringrequired

The unique ID of the source this account belongs to

sourceName stringrequired

The display name of the source this account belongs to

identityId string

The unique ID of the identity this account is correlated to

attributes objectnullablerequired

The account attributes that are aggregated

property name* anynullable

The account attributes that are aggregated

authoritative booleanrequired

Indicates if this account is from an authoritative source

description stringnullable

A description of the account

disabled booleanrequired

Indicates if the account is currently disabled

locked booleanrequired

Indicates if the account is currently locked

nativeIdentity stringrequired

The unique ID of the account generated by the source system

systemAccount booleanrequired

If true, this is a user account within IdentityNow. If false, this is an account from a source system.

uncorrelated booleanrequired

Indicates if this account is not correlated to an identity

uuid stringnullable

The unique ID of the account as determined by the account schema

manuallyCorrelated booleanrequired

Indicates if the account has been manually correlated to an identity

hasEntitlements booleanrequired

Indicates if the account has entitlements

identity object

The identity this account is correlated to

id string

the application ID

name string

the application name

sourceOwner object

The owner of the source this account belongs to

id string

the application ID

name string

the application name

features stringnullable

A string list containing the owning source's features

]

[
  {
    "id": "id12345",
    "name": "aName",
    "created": "2023-01-03T21:16:22.432Z",
    "modified": "2023-01-03T21:16:22.432Z",
    "sourceId": "2c9180835d2e5168015d32f890ca1581",
    "sourceName": "Employees",
    "identityId": "2c9180835d2e5168015d32f890ca1581",
    "attributes": {
      "firstName": "SailPoint",
      "lastName": "Support",
      "displayName": "SailPoint Support"
    },
    "authoritative": false,
    "description": null,
    "disabled": false,
    "locked": false,
    "nativeIdentity": "552775",
    "systemAccount": false,
    "uncorrelated": false,
    "uuid": "slpt.support",
    "manuallyCorrelated": false,
    "hasEntitlements": true,
    "identity": {
      "id": "2c918084660f45d6016617daa9210584",
      "type": "IDENTITY",
      "name": "Adam Kennedy"
    },
    "sourceOwner": {
      "id": "4c5c8534e99445de98eef6c75e25eb01",
      "type": "IDENTITY",
      "name": "SailPoint Support"
    },
    "features": "ENABLE"
  }
]

[
  {
    "attributes": null,
    "created": "2021-09-28T02:15:44.644Z",
    "description": null,
    "disabled": false,
    "features": "PROVISIONING, GROUP_PROVISIONING, SYNC_PROVISIONING, AUTHENTICATE",
    "hasEntitlements": true,
    "id": "2c9180867c184ff6017c2a2fbf031667",
    "identityId": "2c9180867c184ff6017c2a2fbf031666",
    "locked": false,
    "manuallyCorrelated": false,
    "modified": "2021-09-28T02:16:12.207Z",
    "name": "Geovanni.0a7cad6df",
    "nativeIdentity": "CN=Geovanni 0a7cad6df,OU=hpun,OU=org-data-service,DC=TestAutomationAD,DC=local",
    "sourceId": "2c91808b7c28b350017c2a2ec5790aa1",
    "uuid": "{e4218fa4-da52-4bb0-aa41-d2dcc08a7ad8}"
  }
]

[
  {
    "attributes": null,
    "authoritative": true,
    "created": "2021-09-28T02:15:44.644Z",
    "description": null,
    "disabled": false,
    "features": "PROVISIONING, GROUP_PROVISIONING, SYNC_PROVISIONING, AUTHENTICATE",
    "hasEntitlements": true,
    "id": "2c9180867c184ff6017c2a2fbf031667",
    "identityId": "2c9180867c184ff6017c2a2fbf031666",
    "locked": false,
    "manuallyCorrelated": false,
    "modified": "2021-09-28T02:16:12.207Z",
    "name": "Geovanni.0a7cad6df",
    "nativeIdentity": "CN=Geovanni 0a7cad6df,OU=hpun,OU=org-data-service,DC=TestAutomationAD,DC=local",
    "sourceId": "2c91808b7c28b350017c2a2ec5790aa1",
    "systemAccount": false,
    "uncorrelated": false,
    "uuid": "{e4218fa4-da52-4bb0-aa41-d2dcc08a7ad8}"
  }
]

Client Error - Returned if the request body is invalid.

application/json

Schema
Example (from schema)

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

An indicator of how the locale was selected. DEFAULT means the locale is the system default. REQUEST means the locale was selected from the request context (i.e., best match based on the Accept-Language header). Additional values may be added in the future without notice.

text string

Actual text of the error message in the indicated locale.

]

causes object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.

application/json

Schema
Example (from schema)

Schema

error

A message describing the error

{
  "error": "JWT validation failed: JWT is expired"
}

Forbidden - Returned if the user you are running as, doesn't have access to this end-point.

application/json

Schema
Example (from schema)
403

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

causes object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

An example of a 403 response object

{
  "detailCode": "403 Forbidden",
  "trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The server understood the request but refuses to authorize it."
    }
  ]
}

Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.

application/json

Schema
Example (from schema)

Schema

message

A message describing the error

{
  "message": " Rate Limit Exceeded "
}

Internal Server Error - Returned if there is an unexpected error.

application/json

Schema
Example (from schema)
500

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

causes object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOriginnullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

An example of a 500 response object

{
  "detailCode": "500.0 Internal Fault",
  "trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "An internal fault occurred."
    }
  ]
}

Accounts List

/accounts

Request​

Query Parameters

Responses​

Request

Responses