Direct Permission SQL

Direct Permission SQL is used to pull the direct permission data from a permission table. The permission table must contain at least an Identity attribute column. Identity Security Cloud pulls permission data using an SQL query to refer to the Identity attribute during the aggregation process.

The SQL query must be written in such a way that ResultSet data contains Target as a first column and Permission as a second column. Optionally, you can add a third column and set it as Annotation.

For example, if you reference a permission table named Permission and you use $(identity) as the identity attribute, you could use the following SQL query:

SELECT column4 AS TARGET,column5 AS PERMISSION FROM Permission p WHERE CONCAT(TRIM(CONCAT(p.column1,'\ ')), TRIM(p.column2)) = '$(identity)';

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Direct Permission SQL

Documentation Feedback