Blog for the love of learningLearn Quickly - implement immediately

Sailpoint Online Blog, Tutorials, Interview Q&A


Q. What are the key drivers of IAM?

  • Improved security
  • Audit and compliance
  • Operational efficiency
  • Business enablement

    Q. Name the main Stages of Identity Life Cycle in typical IDM?

  • New User Creation or Onboarding
  • Account Maintenance – Password management, Role addition etc.
  • Departing user or termination or Off-boarding

    Q. What are Sailpoint capabilities?

    Capability is a way of controlling user access in IIQ. It determines which objects a user can access and what actions he can do.

    Sailpoint Online Tutorials on IIQ Capabilities

    Q. Difference between Scope and Capability in Sailpoint?

  • Capabilities control the actions that a user can perform and which menu options are available
  • Scoping controls which objects a user can act upon and which objects are available
  • Both affect what the user can see in IdentityIQ

    Q. What does SSO mean?

    Single Sign On is a property of access control of multiple related, but independent software systems. With this property a user logs in with a single user login to gain access to connected systems without being prompted for different usernames or passwords or in some configurations seamlessly sign on to all system.

    Get Sailpoint Online Training Now

    Q. What are the differences between Authentication and Authorization?

    Authentication – Process of determining the identity of a user that is attempting to access a system

  • Who is the user?
  • Is the user really who he/she represents himself to be?

    Authorization – Process of determining what types of activities are permitted. Usually, authorization is in the context of an authenticated identity

  • Is user X authorized to access resource D?
  • Is user X authorized to perform operation J?
  • Is user X authorized to perform operation D on resource J?

    Q. What is Sailpoint Identity Cube?

  • Term to refer to each unique identity stored in IdentityIQ repository
  • Stores all information known about an identity (Employee/Consultant/User)
    o Examples:  Identity Attributes  Application Accounts  Entitlements/Roles  History  Risk Score  Policy Violations  User Rights (Capabilities/Scoping)

    Q. What is Scoping in Sailpoint?

  • Subdividing data into logical groups and granting access based on those subdivisions.
  • Any IIQ object can have Assigned scopes: o Application, Identity, Role etc
  • User can have authorized Access. Example of Sailpoint Authorized Access in Scoping
    Q. What are the different types of roles in IIQ?

    * By default, there are four types of roles configured in IdentityIQ:

  • Organizational: organize the roles in the IdentityIQ UI for easier management
  • Business: identify job functions or titles
  • IT: encapsulate sets of system entitlements
  • Entitlement: represent individual system entitlements

    * Custom role types can be created to model a structure that doesn’t easily fit into the IdentityIQ default model. In addition, the existing role types can be configured to function differently from their default behaviors.

    Q. What is data merging during application configuration? Which applications support the data merging feature?

    * Data merging is a connector level feature available in delimited and JDBC type of applications. Multiple entries of data are merged during aggregation. Which columns to be merged and which is the unique identifier needs to be configured. Sailpoint Online Training on data merging
    Post Tags - Sailpoint online training, Sailpoint Online Tutorials on Interview Q&A

    Join Sailpoint Online Training Now