SailPoint Connector Integration

Integrate SailPoint as a connector in Axiad Mesh to retrieve user, application access, credential, and entitlement data, which will provide broad visibility of the non-identity-centric applications that SailPoint provisions identities to and/or draws identity information from.

To set up the SailPoint integration, you must configure a new API client in SailPoint and then add it as a connector in the Mesh administrative portal.

SailPoint Configuration Steps

IMPORTANT

These steps are Axiad’s current understanding of the configuration. Since SailPoint is a third-party product, there may be slight variations between your experience and what the guide describes. We work hard to keep things as up to date as possible, but depending on versions in use, latest updates, etc., there may be some mismatches.

If you find any blatant differences or anything that does not make sense, then please provide feedback on this article.

To create a new API client, complete the following steps in the SailPoint administrative console.

1. Within the SailPoint portal, navigate to Admin > Global > Security Settings

2. On the Security Settings page, select API Management in the side menu

3. Click + New

4. Provide a friendly name for the Description

5. Check the Client Credentials and Refresh Token boxes

6. Set the Refresh Token dropdown to for how long the token should be valid

7. Add the following Scopes:

   • idn:identity:read to view identities

   • sp:auth-user:read to view user authentication system details

   • sp:scopes:all to grant access to all rights associated to the user’s or system’s capabilities

8. Click Create

9. Copy the Client ID and Client Secret values to use in the Axiad Mesh Configuration Steps below

IMPORTANT

You must copy these values now because they will not be available once you close the window. If you do not copy them, then you’ll need to create another new API Client and copy those values.

Axiad Mesh Configuration Steps

You can add SailPoint as a connector easily from the Mesh administrative portal.

1. From the homepage, click on the gear icon menu button to get to the Settings page

2. On the Connectors page, click the Add connector button, either in the middle of the page if this is your first connector, or in the top right side of the screen

3. In the new pop-up, set the Name to a friendly name that will appear on the Connectors page

4. Select SailPoint from the Provider dropdown

5. Select your Instance Type from the dropdown:

   • FedRAMP: Your SailPoint is a FedRAMP instance

   • Custom: You have a custom domain for your SaaS SailPoint deployment

   • Commercial: You have a standard enterprise SailPoint deployment

6. Set the SailPoint Tenant Identifier to your SailPoint Tenant ID value

7. Set the SailPoint Client Identifier to the Client ID value copied from step 9 above

8. Set the SailPoint Client Secret to the Client Secret value copied from step 9 above

9. Click the Test connection button once all values are provided

10. Following a successful test, click Add & connect to complete the configuration

11. Now your SailPoint connector will appear on the Connectors page