What Data Is Aggregated?

Account aggregation is the process through which account data from a configured application is read into IdentityIQ and stored in Link (account) objects connected to Identities. Aggregation is an integral part of every IdentityIQ installation. Account aggregation reads in information about identities, which typically includes:

• Account information – the accounts the identity has on the system being aggregated.

• Entitlements – the access the identity has on the systems that it has accounts on.

• From authoritative sources – information about the identity, such as name, department, email address, etc.

Account Group aggregation is used to create entitlements (managedAttributes) representing an application's group objects. See Entitlement Catalog.