Skip to content

Parameter Storage

SailPoint Parameter Storage allows admins to store and update privileged credentials in a single SailPoint managed secure repository. Parameter Storage provides secure handling of sensitive customer data removing the need for external storage solutions.

Parameter Storage enables admins to:

  • Update and manage parameters in a single place within Identity Security Cloud.

  • Improve security of secret handling.

  • Reduce repetitive entry and human error.

Parameter Storage supports three categories of parameters, each with several types.

  • Authentication - These are username + secret or other data required to authenticate an action .

    • Credential

    • Azure Entra ID Client

    • HTTP Custom Authorization

    • Oath 2.0 Client Credentials Grant

  • Connection - These are used to connect to target systems of actions . These could be host-names, IP addresses, URLs etc. These are often repeated and if changed, benefit from one central place to update.

    • Active Directory

    • Entra ID

    • Server Address

    • WebApp

    • Kerberos

  • Authorization – This represents the authorization required for the action where the parameter is used.

    • OAuth Scopes

Note

Parameter Storage is only available for customers in AWS regions where AWS Nitro Enclaves that SailPoint employs are supported.

Using Parameter Storage with Privileged Task Automation

The SailPoint Parameter Storage service offers a centralized repository of authentication, connection, and authorization configurations stored as parameter values. An admin creates parameters to store or add existing credentials that can be referenced in Privileged Task Automation Workflow configurations and, when these workflows are executed, the relevant values are retrieved via the SailPoint Parameter Storage API.

Admins can then use stored parameters in Privileged Actions within Privileged Task Automation Workflows, enabling the Action access to authentication and connection parameters without exposing their values to the admin.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.