Skip to content

Managing User Accounts in Identity Security Cloud

You can create a source within Identity Security Cloud to manage users who have an account within Non-Employee Risk Management. This connector can also be used to manage their Non-Employee Risk Management roles by aggregating them as entitlements.

Notes

  • This source aggregates and manages lifecycle users, rather than profiles or portal users. Non-employee and assignment profiles, as well as portal users, can be managed with a profile management source.

Prerequisites:

  • Create and copy an API key from Non-Employee Risk Management to use within Identity Security Cloud.

    Best Practice

    Use a separate API key for each Non-Employee Risk Management source you create.

To create a user-management source in Identity Security Cloud:

  1. Within Identity Security Cloud, go to Admin > Connections > Sources

  2. Select Create New.

  3. Find the SailPoint Non-Employee Risk Management Users source type and select Configure.

  4. Enter a source name.

  5. Enter a description for your source.

  6. In the Source Owner field, begin typing the name of an owner. Matches appear after you type two letters.

  7. (Optional) Select a governance group for source management.

    Important

    Marking this source as authoritative is not recommended.

  8. Select Continue.

  9. Select Configuration in the left panel.

  10. In the API Key field, enter the API key you saved within Non-Employee Risk Management for this source.

  11. In the Non-Employee Risk Management Tenant Domain field, enter the URL for your tenant.

  12. Select Save.

  13. Select Review and Test.

  14. Review the configuration details and select Test Connection. A successful test is required for Identity Security Cloud to gather data for this source.

After your source has been connected, you can make any additional configurations you need.

Configure correlation to ensure that user accounts will be associated with the correct identities.

You can schedule regular aggregations for accounts in this source.

If you use Identity Security Cloud entitlements to grant roles to your users, you should also schedule regular entitlement aggregations.

Configure a Create Account policy to configure how accounts and attributes should be provisioned to Non-Employee Risk Management.

You can also configure attribute sync to keep Non-Employee Risk Management data synchronized with the authoritative identity attributes from Identity Security Cloud.

Note

Custom account schemas are not supported on the Non-Employee Risk Management Users source.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.