Skip to content

Requesting Machine Accounts

If machine account requests are enabled in your tenant, you can request an entitlement that allows you to request machine accounts on a specific source. In the Request Center, locate the entitlement Machine Account Creation - [source name]/[subtype name].

Once this entitlement is granted, you can submit requests to create machine accounts for entitlements that you have access to.

  1. Start creating a new machine account from one of three places:

    • From the navigation menu, select the Create icon , then Machine Account.
    • From the dashboard, select the My Ownership tile, then Machine Accounts > Create Machine Account.
    • Admins can go to Admin > Identity Management > Accounts > Machine Accounts and select Create Machine Account.

  2. In the Details section, complete the following:

    • Select the source that the machine account will reside on. If the source is not listed, contact your administrator for assistance.
    • Select the subtype for the machine account. Subtypes are defined by org admins for sources on your tenant. They may indicate the type of account and what it’s used for.
    • Choose an account owner.
    • Optionally, you can add a description.
    • Select Continue.

  3. The next section includes the fields that have been configured for your tenant, which may include business justification, account name, region, and expiration date.

  4. Select Continue.

  5. (Optional) In the Entitlements tab, select Add Entitlements to add one or more entitlements on the source that will be assigned to the new account.

    • Locate entitlements by searching or scrolling. Arrows are available at the lower right to change pages.
    • Select the checkbox for all entitlements that you want to add, up to a maximum of 20.

    • Select Add Entitlements.

      Note

      If you want to remove entitlements, select Add Entitlements to return to the entitlements selection page, then deselect the appropriate checkbox(es). Select Add Entitlements again to return to the entitlements page on the Create Machine Account interaction.

  6. Select Create Account.

If no approval is required for account creation, the account will be created.

If approval is required, the request is submitted to an approver. The machine account will go through the approval process defined by your administrators and you’ll receive notifications as approvers review your request. If entitlements were assigned to the account, these access items will also go through the approval process defined at their entitlement level after the account is approved. If an approver denies an entitlement, the account will still be created without that entitlement.

You can review the status of your account requests by going to Request Center > My Requests > Account Requests. Locate a request and select Details. From there, you can select the tabs to review progress through the approval process, details about the request, the form associated with the request, and entitlements.

Once an account request is approved and successfully provisioned, you can also track any entitlements that were selected on the Access Requests page. Refer to Tracking Requests.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.