Sailpoint
Step 1: Create Sailpoint Application #
- Log in to Sailpoint IdentityNow:
- Navigate to your Sailpoint IdentityNow tenant.
- Go to Admin > Applications.
- Create New Application:
- Click “Create Application”.
- Enter a name for your application (e.g., “SolcyberIntegration”).
- Select “OAuth Client” as the application type.
- Click “Create”.
Step 2: Configure Application Settings #
- Grant API Access:
- In the “OAuth Scopes” section of your application, enable the following scopes:
sp:scopes:defaultsp:read:audit-eventssp:read:activity-eventssp:read:account-activitysp:read:tenant-settings
- In the “OAuth Scopes” section of your application, enable the following scopes:
- Note Application Credentials:
- Copy the Client ID and Client Secret from the application settings.
- Note your Base URL (e.g.,
https://your-tenant.identitynow.com). - You will need to provide this information to SolCyber.
Step 3: Configure Log Collection #
- Enable Audit Logging:
- Go to Admin > Audit Configuration in your Sailpoint IdentityNow tenant.
- Ensure audit logging is enabled for the following events:
- Authentication events
- Authorization events
- User management events
- Role and permission changes
- Access reviews and certifications
- Configure Activity Logging:
- Go to Admin > Activity Configuration.
- Enable activity logging for:
- User login/logout events
- Application access events
- Data access events
- Administrative actions
- Configure Account Activity Logging:
- Go to Admin > Account Activity Configuration.
- Enable account activity logging for:
- Account provisioning and deprovisioning events
- Account attribute changes
- Account status changes
- Account access and modification events
Step 4: Network Configuration #
- Whitelist Databahn IPs:
- Add Databahn’s IP addresses to your Sailpoint tenant’s allowed IPs if IP restrictions are enabled:
- 3.229.112.66
- 3.223.27.127
- 52.201.54.124
- 52.203.151.207
- Add Databahn’s IP addresses to your Sailpoint tenant’s allowed IPs if IP restrictions are enabled:
- Configure CORS (if needed):
- If using web-based authentication flows, ensure CORS is properly configured.
Sailpoint Integration Reference
- Refer to the Sailpoint IdentityNow API Documentation for detailed information on API endpoints and data formats.
- For authentication flows, see Sailpoint OAuth Documentation.