SailPoint IIQ - ForgeRock - FAQ

Five main pillars of ForgeRock ForgeRock Identity Management ForgeRock Identity Management ForgeRock Directory Services ForgeRock Identity Gateway ForgeRock Open ICF (Connector Framework) IAM (Identity & Access Management) Identity Management mainly deals with: Creating or onboarding identities into organization Managing users digital identities and its life cycle Here main goal is to provide right access to the right person In Identity Management attributes are loaded to a identity and those are managed throughout the life cycle of user Access Management mainly deals with: Attributes which are loaded while identity management, now based on the value of these attribute's, here we takes decision in yes/no to allow or block that user from accessing that resource. Basics of Access Management Authentication - Its process of verifying Who you are? e.g. When you log on to Laptop with username and password , You are authenticating. Authorization - It refers What you do? Verifying th...

The User certification process in Identity Management (IDM) systems, often referred to as "access certification" or "access review," is a crucial procedure to ensure that users have appropriate access rights to organizational resources. It helps in maintaining security, compliance, and efficient access control within an organization. Here is an overview of the typical steps involved in the user certification process in IDM: 1.  Define Certification Campaigns Objective : Establish the purpose and scope of the certification campaign. Scope : Determine which users, roles, and resources will be reviewed. Frequency : Decide how often the certification campaigns will occur (e.g., quarterly, bi-annually). 2.  Select Reviewers Assign Reviewers : Identify who will review and certify access. Typically, these are managers, role owners, or system owners. Training : Provide necessary training to reviewers on the certification process and criteria. 3.  Prepare Data for Review Gat...

#User master table, consist of firstname, lastname, email etc. select  * from spt_identity #Entitlement select * from spt_identity_entitlement #Role select * from spt_bundle #Application table details like HR, Finance, PAM application etc. select * from  spt_application # Managed attributes details like type entitlement, group etc. select * from  spt_managed_attribute # Profiles related table select * from  spt_profile select * from  spt_profile_constraints select * from spt_bundle #Request manage access table select * from spt_identity_request_item #Access request table - with completion status, requester, approver etc. select * from  spt_identity_request #WorkItems select * from spt_work_item #Plugin listing table select * from  spt_plugin # Password policies select * from  spt_password_policy #Capabilities select * from  spt_capability select * from  spt_capability_rights select * from  spt_capability_children #Request Detai...

How to Install and Deploy SailPoint IdentityIQ in Local Windows Machine 1]  Prerequisite tools checklist: Use below credential during MySQL database installation setup (At step 2): MySQL super user access needed for running schema scripts  UID          root Password root123 This is same password which you have set during installation of MySQL Download and install below softwares Oracle or Open JDK - Version 1.8  ( https://www.java.com/en/download    or    https://openjdk.org/projects/jdk8/ ) MySQL database - Version 8x  ( https://dev.mysql.com/downloads/installer/ ) Apache Tomcat Server - Version 9x  ( https://archive.apache.org/dist/tomcat/tomcat-9/v9.0.56/bin/apache-tomcat-9.0.56.zip ) Set JAVA_HOME ,  JRE_HOME  and  MY_SQL  path in environment variable 2]  Deploy Sailpoint war/jars & launch SailPoint IQ application: Steps to follow for deploying SailPoint jars/wars and Launch Sai...