Cloud Resource Management
Configure this feature if your application is intended to manage Azure Management Objects. This includes Management Groups, Subscriptions, Resource Groups, Role assignments, and User-Assigned Managed Identities.
Important
You must have a SailPoint Cloud Infrastructure Entitlement Management (SailPoint CIEM) license to enable cloud governance features. Contact your SailPoint Customer Success Manager to request access.
To display cloud resource data through SailPoint CIEM, you must also configure the SailPoint CIEM Azure source. Refer to Connecting Azure and SailPoint CIEM to learn more.
- Go to Feature Management.
-
Select the Manage Cloud Resources checkbox if you want to manage Azure Role Assignments (RBAC) for user-assigned managed identities.
-
Select the Include User-Assigned Managed Identities checkbox to manage user-assigned identities. For more information, refer to User-Assigned Managed Identities Management.
Note
To automate the process of adding user-assigned managed identities account attributes to the account schema during Account Schema configuration, select Include Attributes in Schema for managing user-assigned managed identities . For more information, refer to User-Assigned Managed Identity Attributes. -
In the Azure Privileged Identity Management Setting section, select the Enable Privileged Identity Management checkbox if you want to manage PIM roles (only Azure Active Roles) for user-assigned managed identities.
-
Select Save.