SailPoint CIEM Overview
SailPoint's Cloud Infrastructure Entitlement Management (CIEM) enhances identity governance by providing a deeper view into the effective access of entitlements to resources and your users' entitlement activity in your cloud infrastructure.
To get started, you must configure your cloud service providers and connect them to Identity Security Cloud. You will then manage the cloud entitlements within Identity Security Cloud.
| Amazon Web Services (AWS) | Azure | Google Cloud Platform (GCP) | Okta | |
|---|---|---|---|---|
| CSP Configuration | Configuring AWS | Configuring Azure and Microsoft Entra ID | Configuring GCP | Configuring Okta |
| Identity Security Cloud Configuration | Connecting AWS and SailPoint CIEM | Connecting Azure and SailPoint CIEM | Connecting GCP and SailPoint CIEM | Connecting Okta and SailPoint CIEM |
| Features and Use Cases | Managing AWS Cloud Accounts and Entitlements | Managing Azure Entitlements | Managing GCP Entitlements | Managing Okta Entitlements |
Once you have configured and connected your cloud sources, you can view information and reports about the access identities have to your cloud infrastructure.
If a cloud-enabled entitlement is included in a certification campaign, your certifiers can view cloud details when making certification decisions.
Supported Identity Providers
CIEM supports AWS IAM federation configuration with the following identity providers:
- Azure AD
- Okta
CIEM also supports federation with AWS IAM Identity Center.
Documentation Feedback
Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.