Skip to content

Viewing the Identity Graph for an Access Object

To view the identity graph of an access object, you can:

Tip

As you visualize an identity graph, display a maximum of 5000 access objects on a graph to maintain effective usability. You can do this using filters or additional search queries.

Selecting an Identity Graph for an Access Object

You can access an object’s identity graph where the Identity Graph icon  is available on an access object page.

  1. Go to the access object page.
  2. Locate the access object and then select the Identity Graph icon .
  3. This opens the identity graph for the chosen access object.

Note

When you open the identity graph for an access object from within Identity Security Cloud, the Identity Graph interface opens in the same tab as the Identity Security Cloud window. When you close Identity Graph, you return to the last page viewed in Identity Security Cloud.

Using Search to Find an Access Object

Using the access object name, you can search for Human identities, AI agents, Entitlements, Access Profiles, and Roles to open their Identity Graph.

Limited Availability

AI Agent Identities are only available to select customers. Visit SailPoint Product News for more information.

To search access objects:

  1. Select the search bar.
  2. Enter the name of the access object.
  3. The results that are returned contain the search term. Names of the access objects found are listed in order of type: Human Identities, Roles, Entitlements, Access Profiles, and AI Agent Identities.

  4. Select Load more to scroll through more access objects found. Alternatively, continue adding specific search queries to narrow down the list of access objects.

    Note

    Selecting Load More adds the next five access objects, allowing you to scroll and view them in the search window. Continue selecting Load More to view more access objects found in your search.

  5. Select the access object to open its Identity Graph.

When you open an Identity Graph from a searched access object, the access object is saved to your Explorer.

Managing Explorer

When working in Identity Graph, the explorer automatically saves a shortcut for searched and viewed access objects. Allowing you to quickly access and switch between access object graphs.

Adding Access Objects to the Explorer

There are multiple methods to add access objects to the explorer.

  • Select the Identity Graph icon for an access object in Identity Security Cloud. This action clears the explorer, even if you are accessing the same object. To retain shortcuts in the explorer, create a snapshot.

  • Go to Home > Identity Graph. Opens the last access object viewed and retains the explorer list.

  • Open a saved or shared snapshot. The explorer list is saved with the snapshot and available when the snapshot is viewed.

  • To manually add an access object, right-click a node to select the access object. A blue ring is present around the node when selected. Select Add to explorer list from the menu.

Viewing Access Objects in the Explorer

To open the Explorer window, go to Home > Identity Graph, select Explorer to the left of the graph.

Note

The numerical count represents the number of access objects available in the Explorer window.

The following list describes the actions that can be performed in the Explorer window:

Filtering Listed Access Objects

  1. In the Filter List field, begin typing the name of the access object.
  2. All access objects currently in the explorer that match the search query will appear.

Sort Access Objects

  1. Select the Down Arrow next to Sort by.
  2. Choose whether to sort by the name of the access object or its type in A-Z or Z-A.

Viewing an Access Object Graph

  1. Select View Graph of an access object.
  2. The identity graph of the selected access object is opened.

Viewing Access Object Details

  1. Select View Details of an access object.
  2. Opens the Details window, containing details, attributes, events, and accounts.

Open the Access Object in Identity Security Cloud

  1. Select Open in ISC of an access object.
  2. A new tab is opened, and you are brought to the access object in Identity Security Cloud. The Identity Graph browser tab remains open.

Lock the Access Object Node

  1. Select Lock this node to lock the selected access object. A purple ring is present around a node that is locked. This action is only available for the access object nodes that are open on the identity graph.
  2. When an identity graph is in the dynamic layout, locked nodes won't automatically adjust their position relative to other nodes.

Filter by node

  1. Select Filter by node.
  2. The graph is filtered by the selected access object, showing only those connections between the filtered node and the root node.

Removing Access Objects

Access Objects added to the explorer while working on an identity graph can be removed if the shortcut is not required.

To remove a single access object:

  1. Hover over the access object.
  2. Select the Minus to remove the access object shortcut from the explorer.

To clear all access objects:

  1. Select the Clear button.
  2. All access object shortcuts, except for the access object that is being viewed, are removed from the list.

To remove an access object listed in the Explorer from the identity graph:

  1. Right-click a node. The node is highlighted with a blue circle.
  2. From the menu, select Remove from the explorer list.
  3. The access object is removed from the explorer list.

Viewing Identity Graph as a Data Table

Data visualized in an identity graph can be viewed in table format, providing a tabular representation. This allows you to view the access object type, select columns to view, and filter each column to narrow down what is presented on the table.

  1. Select the Table icon . The columns visible represent the access object type - identities, roles, access profiles, and entitlements.
  2. Navigate between the pages using the navigation buttons to view all the records.

    • Page Number - The page you are viewing and the total number of pages available.
    • Total Records - Total number of records available.
    • Showing - Records that are shown on the page.
    Action Description
    Forward Move to the next page.
    Last Page Skip to the last page.
    Backward Go back to the previous page.
    First Page Go back to the first page.
  3. Select the checkbox next to the column names to add them to the table. Clear the checkbox to hide the column.

  4. To search by column, select Show Filters. Use the search field to add search criteria to each column.
  5. Select Toggle sidebar to show or hide the side panel. Hide the side panel to view the table data in full view.

Download Table Data to CSV

To download table data to a .csv file, select Download CSV.

  • Remove any filters and select all columns to download all the data.

  • The CSV file is generated and downloaded to your local computer.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.