Skip to content

Using Access Risk Management with Identity Security Cloud

The integration between Identity Security Cloud and Access Risk Management gives you the ability to perform fine-grained separation of duties (SoD) analysis of SAP permissions at the authorization object level as part of your access request process in Identity Security Cloud. Using the Access Risk Management What-If analysis simulation engine, this integration flags SoD risks so that approvers can make informed decisions and maintain compliance with company policies. Refer to Reviewing Access Requests.

Note

Using Access Risk Management with Identity Security Cloud requires that your implementation has SAP set up as a source. Contact SailPoint Professional Services for assistance.

Identity Security Cloud and Access Risk Management work together as follows:

Refer to Requesting Access for details about requesting access to SAP in Identity Security Cloud.

Important

  • You cannot simulate risks for entitlements across multiple SAP systems.
  • While ISC currently aggregates SAP profiles as entitlements, the ability to run SOD simulations on SAP profiles has not yet been implemented. Therefore, if an access request includes entitlements that are SAP profiles, the What If simulation does not include the permissions from these entitlements, only the permissions from the SAP roles.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.