Create Account

Prerequisite: Identity Security Cloud is configured for provisioning.

When SailPoint provisions new accounts to the SAP Identity Directory SaaS source, it uses the attributes on the Create Account page as instructions or a template for what to include in the account. Each source can have its own configuration that specifies which attributes to include in account creation and how to set their values. SailPoint pre-defines this for most source types, but you can edit the way the attributes are mapped.

When new access is granted on a source where a user does not already have an account, Identity Security Cloud automatically includes account creation in the provisioning. This applies whether provisioning started from an access request or from automated role or lifecycle state assignment.

For direct-connect source, Identity Security Cloud automatically creates the account from this configuration. If it is not configured as a direct-connect source, Identity Security Cloud creates and assigns a provisioning task to the source owner and includes the values for the source owner to use in manually creating the account.

Warning
This section describes the configuration of the default Create Account. However, SailPoint recommends that you work with Services to define a Create Account specific to your company's needs. Be sure to verify large changes to the provisioning policy before implementation. Failure to do so may result in your provisioning to fail.

Provisioning Attributes

The following list outlines which account attributes SailPoint uses to create a profile for new SAP Identity Directory SaaS accounts:

Important
Account attributes marked with an asterisk(*) are mandatory attributes for account creation.

Account Attribute	Type	Generator	Description
*User Name	String	Identity Attribute - Username	The user's username.
*First Name	String	Identity Attribute - Given Name	The user's first name.
*Last Name	String	Identity Attribute - Family Name	The user's last name.
*Email	String	Identity Attribute - Work Email	The user's email address.
*Display Name	String	Identity Attribute - Display Name	The name of the user, suitable for display to end-users.
User Type	String	Disabled	The type of user used to identify the relationship between the organization and the user.

To enable initial password during the account creation process, select Add Mapping to create a new attribute in the Create Account section with the value password. The password should be atleast 8 characters long and include a mix of uppercase and lowercase letters, numbers, and special symbols.

Note
For more information on SailPoint's REST APIs, refer to Best Practices: REST API Authentication and REST API - Update Source (Partial) in the SailPoint Developer Community.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Create Account

Provisioning Attributes

Documentation Feedback