Skip to content

Configuring Manager Correlation

Manager correlation links an employee to their manager. This relationship is often used in certifications and access request approval processes.

Manager correlation is generally configured on an authoritative source by mapping an identity attribute and an account attribute on a source that contains an account attribute that uniquely identifies the user's manager identity.

For example, the values of the source's manager account attribute for each employee record might be matched to the identificationNumber identity attribute of their manager. For each account, the manager correlation process searches all identities' identificationNumber attribute for a match to the account's manager attribute value and creates a link between the two identities when the matching value is found.

Setting Up Manager Correlation

Manager correlation requires both of these configurations:

  1. The Manager Name attribute must be mapped in each identity profile.

  2. The source containing the account data to match must have a Manager Correlation Configuration specified.

Defining the Manager Correlation Configuration

Define the manager correlation configuration on a source containing an account attribute that defines the manager relationship, usually the authoritative source.

  1. Go to Admin > Connections > Sources and select the source to update.

  2. Select Account Correlation.

  3. Go to the Manager Correlation section at the bottom of the page.

  4. Use the Identity Attribute and Account Attribute dropdown lists to select the attributes to be correlated.

    • Identity Attribute specifies the identity attribute to examine on the manager's identity.
    • Account Attribute names the source account attribute that identifies the employee's manager.

  5. Select Save to save your changes.

When you aggregate your source data or run identity processing, the manager relationships will be examined and recalculated as identity data changes.

Note

A user's manager correlation can change when their account attribute value changes.

  • If the account attribute becomes null, the manager correlation is removed, leaving the identity with no manager assigned.
  • If the account attribute changes to a value that cannot be correlated to assign a new manager, the identity remains correlated to their existing manager.

Applying Complex Manager Correlation Requirements

When manager correlation is more complex than a single field match, the logic can instead be specified programmatically in a manager correlation rule.

If you need assistance determining the identity or account attributes to use for manager correlation or writing and deploying a correlation rule, contact SailPoint Services.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.