Configuring the Connector in SailPoint

An application is an instance of third-party software connected to IdentityIQ. The connector is configured to seamlessly provide governing and provisioning access to the application. The connector configuration includes all of the configuration and connection details required to connect IdentityIQ to the application.

Note

This procedure provides the basic information necessary to configure your connector. For additional information, refer to the Application Configuration Guide PDF for your deployed version of IdentityIQ found in the IdentityIQ Product Guides page on Compass.

To view the latest online IdentityIQ guides, refer to the Documentation Portal.

Caution
Do not open the application configuration in multiple tabs or browsers. Doing so may cause you to accidentally overwrite changes made in other tabs.

  1. Go to Applications > Application Definition.

  2. Select Add New Application.

  3. The Edit Application page opens to the Details page. Enter the following information:

    • Name – The name of the application. This is the name used to identify the application throughout IdentityIQ.

      Note
      IdentityIQ does not support application names that start with a numeric value or that are longer than 31 characters.

    • Owner – The owner of the application. The owner specified here is responsible for certifications and account group certifications requested on this application if no revoker is specified.

      Application ownership can be assigned to an individual identity or to a workgroup. If the application ownership is assigned to a workgroup, all members share certification responsibilities, are assigned certification requests associated with the application, and all can take action on those requests.

    • Application Type – The dropdown list contains the applications to which IdentityIQ can connect. This list will grow and change to meet the needs of IdentityIQ users.

    • Description – A brief description of the application. Use the language selector to enter the description in multiple languages. The dropdown list displays languages supported by your instance of IdentityIQ.

    • Revoker – The default IdentityIQ user or workgroup to be assigned revocation requests associated with entitlements on this application. If no user is specified in this field, all revocation requests are assigned to the to application owner by default.

    • Proxy Application – Specify an application to manage accounts and provide connector and schema settings for this application. The proxy application is an application that handles the processing (aggregation and provisioning) on behalf of your application.

    • Profile Class – A class used to associate this application with a larger set of applications for role modeling purposes.

    • Authoritative Application – Select this option if this application in an authoritative application. An authoritative source is a repository for employee information for your enterprise that represents the primary and most trusted information about identities, such as a human resources application.

    • Case Insensitive – Select this option to remove case sensitivity and ignore capitalization differences within values.

    • Native Change Detection – Select this option if this application should be included when IdentityIQ performs native change detection during aggregation.

      • Native Change Operations – Select which operations are included when detecting native change. If no operations are selected, native change detection is disabled.

      • Attributes to Detect – Indicates which attributes are compared when accounts are modified. If the entitlement option is selected, all entitlement attributes are included. If you select user defined, enter the name of the attributes to compare in the attribute names box.

    • Maintenance Enabled – Select this option to exclude this application from provisioning and aggregation during the defined maintenance period.

      For more information, refer to Application Maintenance Windows.

      • Maintenance Expiration – The date at which the maintenance will end. If no date is defined, this application will be in maintenance indefinitely.

    • Extended Attributes – This section displays any extended attributes that were configured for your deployment of IdentityIQ.

    • For more information on the fields displayed on the Details page, refer to the IdentityIQ Application Configuration Guide for your release.

  4. Select Configuration and enter the information required for IdentityIQ to connect and interact with the application. The information required varies by application.

  5. Select Save.