Blog for the love of learningLearn Quickly - implement immediately

Sailpoint Interview Question and Answers

Sailpoint Training - Learn Sailpoint
Sailpoint Online Training details

Crack the Sailpoint interview. Get Sailpoint interview Q&A from here.

Q. What are the key drivers of IAM?

  • Improved security
  • Audit and compliance
  • Operational efficiency
  • Business enablement

    Q. What is an Identity in IDM? (L1) - IDM Concepts?

  • Identity is unique, should be identifiable.
  • Identity is a collection of characteristics by which a person is identified.
  • Users are those who have access to systems and identity information.

    Q. Do we get Life Cycle Manager as default by importing the init-xml?

    No, we need to explicitly import the init-lcm.xml file

    Q. Who is an Approver in Identity Management?

    The person who has capabilities/Access to Approve/Reject the access request.

    Q. What is a connector?

    Connector is a mediator between Other systems and sailpoint repository. Connector helps to import data into sailpoint database from other systems and vice versa.

    Q. What is meant by exclusion rule?

    Exclusion rule is written for certification to exclude some of the identities with specific attribute to be left out of certification. For e.g. To exclude an identity which is from a particular department, we can write an exclusion rule in Sailpoint.

    Q. Name the main Stages of Identity Life Cycle in typical IDM?

  • New User Creation or Onboarding
  • Account Maintenance – Password management, Role addition etc.
  • Departing user or termination or Off-boarding

    Q. What are Sailpoint capabilities?

    Capability is a way of controlling user access in IIQ. It determines which objects a user can access and what actions he can do.

    Q. What is meant by orphan accounts?

    Accounts that are not correlated while aggregation are called Orphan accounts

    Q. Difference between Scope and Capability in Sailpoint?

  • Capabilities control the actions that a user can perform and which menu options are available
  • Scoping controls which objects a user can act upon and which objects are available
  • Both affect what the user can see in IdentityIQ

    Q. What does SSO mean?

    Single Sign On is a property of access control of multiple related, but independent software systems. With this property a user logs in with a single user login to gain access to connected systems without being prompted for different usernames or passwords or in some configurations seamlessly sign on to all system.

    Check Sailpoint Online Training details

    Q. What are the differences between Authentication and Authorization?

    Authentication – Process of determining the identity of a user that is attempting to access a system

  • Who is the user?
  • Is the user really who he/she represents himself to be?

    Authorization – Process of determining what types of activities are permitted. Usually, authorization is in the context of an authenticated identity

  • Is user X authorized to access resource D?
  • Is user X authorized to perform operation J?
  • Is user X authorized to perform operation D on resource J?

    Q. What is Sailpoint Identity Cube?

  • Term to refer to each unique identity stored in IdentityIQ repository
  • Stores all information known about an identity (Employee/Consultant/User)
    Examples: * Identity Attributes * Application Accounts * Entitlements/Roles * History * Risk Score * Policy Violations * User Rights (Capabilities/Scoping)

    Q. What is Scoping in Sailpoint?

  • Subdividing data into logical groups and granting access based on those subdivisions.
  • Any IIQ object can have Assigned scopes: o Application, Identity, Role etc
  • User can have authorized Access.Example of Sailpoint Authorized Access in Scoping

    Sailpoint Online Training details
    Dont understand what these questions are ??? Join the most detailed Sailpoint Online Training Course

    Q. What is birthright Provisioning?

    While Onboarding an Application customer usually want to provision for some entitlements, these are called birthright provisioning.

    Q. What are different types of correlation in Sailpoint?

    a. Accounts Correlation and b. Manager Correlation

    Q. What are the different types of roles in IIQ?

    * By default, there are four types of roles configured in IdentityIQ:

  • Organizational: organize the roles in the IdentityIQ UI for easier management
  • Business: identify job functions or titles
  • IT: encapsulate sets of system entitlements
  • Entitlement: represent individual system entitlements

    * Custom role types can be created to model a structure that doesn’t easily fit into the IdentityIQ default model. In addition, the existing role types can be configured to function differently from their default behaviors.

    Q. How is an organization represented in Sailpoint??

    Organization is represented in Sailpoint By integrating all the systems / target systems of that particular organization in SailPoint

    Q. What is data merging during application configuration? Which applications support the data merging feature?

    * Data merging is a connector level feature available in delimited and JDBC type of applications. Multiple entries of data are merged during aggregation. Which columns to be merged and which is the unique identifier needs to be configured.Sailpoint Online Training on data mergingQ. what is the flow of rules in Application onboarding?

    Connector Rules: preiterator -> build map -> merge map -> map to resource -> post iterator
    Aggregation Rules: customization -> correlation -> creation -> manager correlation -> managed entitlement customization

    Post Tags - Sailpoint online training, Sailpoint Online Tutorials on Interview Q&A

    Join Sailpoint Online Training Now

    You Are Visitor Number : free web counter