Introduction
Sailpoint identityIQ uses the connectors in various ways. These connectors are divided into two groups depending on what means do these connectors communicate with IdentityIQ. Sailpoint identityIQ is a single method that combines enforcement and provisioning capabilities. This IDM product will manage all the aspects of identity and access management, including "access certification," policy enforcement, user lifecycle management, and account provisioning. You can Learn more about Connectors in the SailPoint Online Course.
What is a SailPoint Connector?
Sailpoint Connector is a means through which IdentityIQ anchors with the target resources that use a software application that can write and read about the target audience. The process of application integration immediately leads to the creation of the connector. For each application, we have mentioned below specific parameters that must be considered under each connector:
Schema
Groups
Application owners
Formatting
Activity sources
Rules of identityIQ
Connection criteria: Login Id and Password
Want To Get SailPoint Training From Experts? Enroll Now For Free Demo SailPoint Training
How do Connectors work:
Governance Connector:
The application specification of this connector uses a specific connection framework. The main purpose of the Governance Connector is to allow direct and immediate ‘read-only’ access to external applications. There are some governance connectors are available:
Mainframe
Logical
Yammer
Rule-based file parser
Rule-based logical
UNIX
VMS
Delimited file
LDIF
Agent Connectors:
These connectors are meant to connect to unified mainframe security networks, and their agents are worked fast and in the safest mode. The agents, including gateway connectors, communicate with IdentityIQ. The agent contractor has the feature of Connector manager, so it does not require the connector manager for now. The IdentityIQ Agent Connectors are:
DB2- UDB
Top secret full
ACF2
AS400
RACF Full
Direct Connectors:
Direct connectors provide both read and write access to Sailpoint connectors that allow the exterior application and IdentityIQ to exchange the information directly in both directions. When they have read and written features required for applications with these connectors, it means they are one of the safest and most efficient solutions to use. The list of direct connectors is:
Webex
GoToMeeting
Google Apps
SharePoint Online
SAP
IBM Lotus Domino
Box. NET
Novell Directory
OpenLDAP – Direct
Oracle E-business Suite
Linux
RemedyForce
Microsoft SQL server
Sybase
Rally
SAP enterprise portal
Tivoli - Direct
Gateway Connectors:
Gateway Connectors use a Connector Manager to access the use of external applications and have been rewritten over the direct connectors.
Target Permission Support (ACF2, RACF, and Top Secret)
It is the mainframe-based connectors like RAFC, Top secret, and ACF2 that support the target permission.
Sailpoint Identityiq Connectors are divided into two types of groups:
Connectors that can write and read information about the external program like ( gateway and Direct)
Read-only connectors that transfer the data to identityIQ (governance) from external applications.
Read/Write Connectors:
There are some read and write connectors are available:
Sailpoint IdentityIQ Active directory Connector:
IdentityIQ mainly uses the ADSI and LDAP active directory interfaces that connecting with Windows Domain Controllers. There are two group membership forms for the active directory. They are:
Other Group Membership
Primary Group Concept
Primarily you can have only one group in the Active directory. However, there is no limitation to the number of secondary groups in such a directory. In such a case, the secondary groups are listed under the project as an asset but there are various groups in the member property of the user project. However, the member property does not identify the primary group, still, the Sailpoint connector performs a follow–up inquiry to decide the primary group of the users.
Sailpoint IdentityIQ LDAP Connector:
This connector uses LDAP RFC technology and works virtually with every other LDAP connector or server without the use of any additional configuration. The LDAP connector supports entitlements, user provisioning, LDAP account retrieval, and group object classes.
Sailpoint IdentityIQ Microsoft office 365 Connector:
The Microsoft Office 365 online directory, store users, features, and groups are managed by this connector. Still, it does not control the quality linked with Microsoft office 365 suite's other products such as exchange online, Lync, and share point online. To enforce its functionalities in IQ service running on Windows 7 or Windows Server 2008 R2 computer, the Microsoft office 365 connector uses cmdlets for windows power shell.
Sailpoint IdentityIQ SAP Connector:
SAP enterprise resources planning platform is an advanced software system that combines the business core business functions. The SAP connector populates the SAP system with user and processes and also provisioning user's roles.
Sailpoint IdentityIQ Oracle Connector:
The Oracle database is also called Oracle RDBMS; it is a rationale database management system. Sailpoint Connectors IdentityIQ, an Oracle Server connector, is an Oracle database server connector that allows you to manage complete user administration, including provisioning and password security. Oracle Server Connector works the following entities of the Oracle Server:
SailPoint IdentityIQ Siebel Connector:
As a part of Oracle's Siebel CRM, the Siebel connector manages entities. In this connector, the employees are treated as accounts, and the system manages their work positions as Account Groups. The Siebel connector defaults to using the team member's Siebel business attribute of the Employee Siebel business object for account management. The connectors use the position of a business component of the work of the business object for account group provisioning. In account group provisioning, the connector may be responsible for managing other Siebel business objects; the Siebel connector contains both single and multiple attributes.
Read Only Direct Connectors:
There are a few read-only direct connectors:
Sailpoint IdentityIQ ALES Connector:
The BEA's Aqualogic business security server is communicated using this connector, and the ALES entitlement query API is used for the integration.
Sailpoint IdentityIQ IBM Tivoli Identity manager Connector:
The IBM Tivoli identity manager connector will scan the directory of all group memberships using the groupMemeberSearchDN feature as a starting point. However, the IBM Tivoli identity manager has not maintained the record of users' group preferences. Still, this connector always runs a separate query to get the list of all user groups.
SailPoint IdentityIQ Logical Connector:
The logical Sailpoint connector is designed to make the objects not just look but also function like IdentityIQ applications. These connectors create accounts from supplementary or tier applications and connect with existing identity cubes. When the analytical application finds the three requisite accounts on a single identity, it scans identities and generates an account on the logical application. Instead of three different versions, you can also use it for a representative account for certification, tracking, and reporting.
Sailpoint IdentityIQ UNIX Connector:
The UNIX connector was built to read and parse the password and group files from the UNIX servers to create groups and communities. There is some overlap between the UNIX and delimited file connectors, which are based on files. The IdentityIQ measures the authentication performance by authenticating the FTP or SCP services with the provided login credentials, depending on the application configuration.
Sailpoint IdentityIQ Delimited Connector:
The delimited file connector follows a set of rules, and the rules can modify to accommodate the difficulty of the extracted data. This connector can be set up that allows for the discovery of schema attributes automatically.
Sailpoint IdentityIQ Yammer Connector:
The Yammer Connectors is a read-only connector that retrieves community and account data from one or more Yammer networks.
Conclusion:
Thus we've seen various connectors and supported features that may be utilized in Sailpoint Connector. It assists the enterprise in boosting IT performance through the use of out-of-the-box connectors and integrations for quick software onboarding. By the use of unified controls and rules, you could keep statistics secure. Ascertain the statistics safety and compliance regulations are enforced at all times.
If you want to know more about Sailpoint visit this blog Sailpoint Connectors!