Stay up to date on our latest software release updates.
At SailPoint we’re committed to innovation. From product improvements to breakthrough technologies, this page will highlight our IdentityIQ and File Access Manager release updates, as well as provide a preview of some of the great new features our team is currently working on.
Forward Looking Statement
The development, release, and timing of any features or functionality described for our products that are not currently available remains at our sole discretion on a when, and if available, basis and may not be delivered at all and should not be relied on in making a purchasing decision.
Please try again.
IdentityIQ is integrating with Cloud Access Manager to provide visibility into and governance over IaaS platforms.
Reporting needs continues to be of utmost importance to a compliant governance program. Many key improvements are being made to IdentityIQ reports.
Self-service Password Reset Improvements
Improvements to the self-service password reset flow are being made to streamline the user experience.
Automated Role Discovery and Creation
Provides a seamless experience between role creation and role governance eliminating the need to export roles and insights via CSV.
Continuing to build on Rapid Setup, we are working on adding Identity Processing Thresholds for Rapid Setup and non-Rapid Setup lifecycle events. We are also making improvements to OOTB Attribute Synch that will be tied to Rapid Setup to allow for capabilities such as staged event processing and better traceability of attribute synch events.
Enhanced Lifecycle Management of Privileged Access
IdentityIQ Privileged Access Management module is being improved to automate lifecycle management of the assignment and ownership of privileged access management.
Support Business Justifications for Access Requests and Approvals
Administrators can optionally require that access requests and access approvals to specific roles, applications, or entitlements be accompanied by a business justification.
Improved Active Directory Aggregation
AD aggregations will use the GUID instead of DistinguishedName as the uniqueID for improved accuracy.
Protect the security and integrity of your access governance practice by using custom classifications to categorize and flag sensitive access. Classifications can alert you when requesting, granting, or approving roles or entitlements will give the user access to sensitive, protected, or otherwise significant data.
Bring key data governance features to the IdentityIQ business user by integrating with File Access Manager. This integration puts a Data Governance menu and widgets on the IdentityIQ dashboard, providing direct access to the File Access Manager website and giving users the context needed to make informed access decisions.
Add efficiency and speed to your approval process by allowing automatic approval of access based on recommendations from IdentityAI.
Localization of Recommendations
Expand the global use of IdentityAI recommendations for access requests or certifications, by presenting recommendation information in English, German, French, Dutch, Spanish, and Italian.
Make the certification process clearer and more transparent for both reviewers and users by requiring reviewers to include comments when revoking access in a certification, and by showing more entitlement details to reviewers about the roles they are reviewing.
Support for Google Cloud Platform
Hosting IdentityIQ within Google Cloud’s IaaS Platform is now a supported option.
New SCIM API for alerts, allowing the creation of new alerts (POST) and checking the status of existing alerts (GET).
Access Management Enhancement
A new Quicklink configuration setting (“What can members remove?”) gives you flexibility and control over what users can view and remove on the Remove Access tab, when managing user access.
Expanded 508/WCAG Compliance
The Edit Preferences page is now 508/WCAG compliant, and is enhanced with a user-friendly multi-tab format.
Expanded OAuth Support
IdentityIQ now supports OAuth on all REST endpoints within IdentityIQ, including the Plugin Framework.
Gain deeper visibility into managing the risks associated with user access, using the artificial intelligence and machine learning capabilities of SailPoint’s AI Services. A simple, out-of-the-box integration with AI Services gives you the power of artificial intelligence insights, providing guidance for decisions on access reviews and access request approvals.
Add security and efficiency to certifications by enabling the automatic deprovisioning of roles and entitlements when a temporary exception period expires. Manage time-limited access proactively by enabling email notification of impending sunsetting and deprovisioning of roles and entitlements.
Add essential attachments such as training certificates or notarized authorizations to access requests. You can make attachments can optional or required, and use rules to define specific requirements.
An expanded default view for Approvals provides full information for all approval items, making it quick and simple for approvers to review and process access requests from a single page, without having to open each item individually to see details and take action.
Expanded plugin features include the ability to leverage classes contained in plugins from any area or feature of IdentityIQ where BeanShell can be used (such as rules, workflow steps, and scriptlets), and support for forms in the plugin configuration UI, giving you more ways to present complex or dynamic options in the plugin’s configuration page.
New context-sensitive help to Targeted Certifications, Access Reviewes, and Access Requests.
Support for version 2 of Log4j adds new logging capabilities (specifically, change listening), and changes the logging configuration file name and logging syntax.
Filter or redirect IIQ console output using piping.
IdentityIQ version 8.0 supports OpenJDK.
New Reports for Capabilties
See how access to features within IdentityIQ are assigned to identities in your system, using new reports mapping identities and capabilities.
Four of IdentityIQ’s most commonly-used user interfaces have been updated to be simpler, more intuitive, streamlined, and mobile-friendly: Access Reviews, Access Requests, Work Items, and Managing User Access.
Users with disabilities such as visual and motor impairments now have enhanced accessibility in IdentityIQ’s UI, which follows worldwide WCAG 2.0 and United States 508 Compliance guidelines for keyboard navigation, focus control, screen reader support, and color contrast.
Expanded options for self-certification give finer-grained control over who may validate their own access.
Easily build flexible, full-featured certifications from an intuitive and user-friendly new UI that gives users more control over who, what, and when to certify.
Track the health of both cloud-based and on-premise IdentityIQ environments and enjoy better visibility into the state of your environment using new monitoring and troubleshooting features.
Add robust governance of Robotic Process Automation (RPA or “bot”) identities using new controls and attributes to categorize identities by type.
Make privileged access more secure and convenient by enabling applications that require a login and password to obtain that information directly from a PAM source at runtime.
Enforce separation of duties for effective entitlements using a purpose-built new policy type.
New resiliency features help ensure that cloud-based implementations of IdentityIQ are resilient to the dynamic nature of cloud-hosted environments, and help on-premise implementations minimize the impact of outages, database failures, et cetera.
Onboard and manage applications in bulk using a new task that facilitates simple creation and maintenance of multiple applications.
Enjoy better visibility and control of tasks using a new new task management administrator UI. Monitor task status and performance, choose specific hosts for running tasks, and gather stack trace details.
Avoid unexpected downtime by setting maintenance windows for applications; you can specify when applications are taken offline for maintenance, preventing any interactions with the application’s target system.
Gain a more complete a more complete picture of the access users have on unstructured resources like network file shares, SharePoint, cloud file stores, et cetera, by aggregating unstructured target permissions data from SecurityIQ into IdentityIQ.
Share valuable contextual information about processes between IdentityIQ and SecurityIQ by aggregating activity alert records from SecurityIQ, and use this data to trigger workflows, certifications, and/or notifications in IdentityIQ in response to those alerts.
Processing violations is easier and more intuitive with a new Policy Violations user interface.
All Access Review UIs now use the enhanced and streamlined UI that was introduced in release 7.1.
New enhanced, responsive UIs make tracking requests simpler and more intuitive for requesters and request owners.
Enhanced functionality for plugins includes internationalization, snippet support, Angular support, and the ability to implement your plugin as an IdentityIQ widget.
Make your IdentityIQ access more secure by adding multi-factor authentication.