SailPoint's Joiner Process

Questions and Answers

What is the reason for not having a technical joiner process in SailPoint?

The process would only be executed once and is not retried when it fails.

What is the recommended approach to define accounts and permissions for employees in SailPoint?

Defining them through the role model.

Why is it an architectural choice to define roles per OpCo in SailPoint?

To enable OpCo administrators to make decisions on access without affecting other OpCo employees.

What is the purpose of the sunrise period in SailPoint?

To allow the account to be created before the employee starts working.

What safety measures are in place in SailPoint to prevent creating roles assigned to identities of other OpCos?

Safety measures to prevent administrators from one OpCo creating roles for another OpCo.

What is the purpose of the joiner process placeholder in SailPoint?

The joiner process placeholder is provided but not implemented in SailPoint because it would only be executed once and is not retried when it fails.

What is the role model approach in SailPoint for defining accounts and permissions?

The role model approach in SailPoint allows for specifying the accounts and permissions an employee needs based on their role.

Why is it important to define roles per OpCo in SailPoint?

Defining roles per OpCo in SailPoint allows OpCo administrators to make decisions on access without affecting other OpCo employees.

What is the purpose of the sunrise period in SailPoint?

The sunrise period in SailPoint is the time before an employee starts working, during which their account is already created.

What safety measures are in place in SailPoint to prevent cross-OpCo role assignments?

SailPoint has safety measures in place to prevent administrators from one OpCo assigning roles to identities of another OpCo.

Study Notes

Joiner Process and Sunrise Period in SailPoint

• SailPoint does not have a technical joiner process, as it is more efficient to define accounts and permissions through the role model.
• The role model allows for specifying who needs access and defining the access, without affecting other OpCo's employees.
• Roles are defined per OpCo to enable OpCo administrators to make access decisions for their employees.
• Safety measures are in place to prevent an OpCo administrator from assigning roles to identities of another OpCo.
• The sunrise period is the time before an employee starts working but their account is already created.
• The length of the sunrise period varies per OpCo.
• The joiner process is not executed repeatedly, as it is a one-time process that is not retried if it fails.
• Defining roles through the role model is a better approach for managing employee access and permissions.
• Some permissions have global application, while others are defined per OpCo based on architectural choices.
• OpCo administrators have the authority to determine who needs access to applications within their OpCo.
• The role model allows for granular control over access rights, ensuring security and compliance.
• SailPoint provides safety measures to prevent unauthorized access and role assignment across OpCos.

Description

Quiz: Understanding SailPoint's Joiner Process Test your knowledge on SailPoint's joiner process and its significance in defining employee accounts and permissions. Learn about the benefits of using the role model approach and how it helps streamline access management.