Process a list of identityIds
POST/identities/process
experimental
This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true to use this endpoint.
This operation should not be used to schedule your own identity processing or to perform system wide identity refreshes. The system will use a combination of event-based processing and scheduled processing that runs every day at 8:00 AM and 8:00 PM in the tenant's timezone to keep your identities synchronized.
This endpoint will perform the following tasks:
- Calculate identity attributes, including applying or running any rules or transforms (e.g. calculate Lifecycle State at a point-in-time it's expected to change).
- Evaluate role assignments, leading to assignment of new roles and removal of existing roles.
- Enforce provisioning for any assigned accesses that haven't been fulfilled (e.g. failure due to source health).
- Recalculate manager relationships.
- Potentially clean-up identity processing errors, assuming the error has been resolved.
Request
Responses
- 202
- 400
- 401
- 403
- 404
- 429
- 500
Object containing the DTO type TASK_RESULT and the job id for the task
Client Error - Returned if the request body is invalid.
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
Not Found - returned if the request URL refers to a resource or object that does not exist
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
Internal Server Error - Returned if there is an unexpected error.