For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
Logo
DeveloperAcademyCommunityStatus
  • Service Management
    • Overview
    • Concierge & Ticketing Capabilities Overview
    • Forms
    • Forms - Integration Specific Guides
    • Live Agent Chat / Handoff
    • Triage
    • Approval Mirroring
    • Ticket Interception
    • Generic Ticketing Integration: Ticket Gateway
  • Administration
    • MyMoveworks
    • Organization Information
    • Roles and Permissions
    • MyMoveworks SSO
  • Moveworks Setup
    • Accessing Moveworks Setup
    • First-Time Login via Magic Link
    • Moveworks Setup Modules
    • Moveworks Setup: Module How To Guides
    • Plugin Management
    • Monitor Alerts
    • Audit Logs
    • DSL Fields Defaults
    • Data Crawling View
    • API Playground
    • Setup Homepage
    • Troubleshooting Hub
    • Security and Privacy Settings
    • Configuration Delete
    • Advanced Config Editor
    • Identity configuration
    • Onboarding Stage
  • Security
    • Security
    • Hyperlink & Button Expiry
    • Attachment Handling
    • Moveworks Subprocessors
  • Provision Management
    • Overview
    • Access Software
    • Access Groups
    • Access Account
  • Access Requirements
    • Overview
    • Update Set Modules
    • Ticketing Systems & ITSMs Access
    • Identity and Access Management Systems Access
      • Active Directory & OpenLDAP Access Requirements
      • Microsoft 365 Access Requirements
      • Okta Access Requirements
      • OneLogin Access Requirements
      • Sailpoint IdentityIQ Access Requirements
    • Multi-Factor Authentication (MFA) Systems Access
    • Knowledge Access Requirements
    • Email Distribution List Systems Access
    • Facilities Management Access
    • Live Agent Chat Access
    • HR Information System Access
    • Expense Management Access
    • Calendar Management Access
  • Core Platform
    • User Identity
    • Moveworks On-Prem Agent
    • Approvals Engine
    • Entity Catalog
    • Configuration Languages
    • Moveworks Data Objects
    • SIEM
  • Employee Experience Insights
    • Overview
    • Breaking Down the Dashboard
    • Understanding Industry Benchmarks
    • Apps & Services
    • Impact Module
    • EXI Common Use Cases
    • Configure EXI
    • Ticket Backpolling
  • Knowledge Studio
    • Overview
    • Knowledge Studio Configuration
    • AI Powered Recommendations
    • Inspecting & Verifying Sources
    • Publishing Articles
    • Creating Knowledge Articles
    • Resolving IT Tickets Guidance
DeveloperAcademyCommunityStatus
On this page
  • General Setup
  • Plugin Installation
  • Create API Client
  • Skill-Specific Access Needs
Access RequirementsIdentity and Access Management Systems Access

Sailpoint IdentityIQ Access Requirements

||View as Markdown|
Was this page helpful?
Edit this page
Previous

Multi-Factor Authentication (MFA) Systems Access

Next
Built with

General Setup

This section covers basic access needs that are required for Moveworks to establish a stable connection to your instance. You will need to provide the following to Moveworks.

  • Oauth Client Credentials (See API Client section below)
    • Client ID
    • Client Secret
    • API URL
      e.g. https://{{BASE_URL}}/identityiq
  • If your Sailpoint IIQ instance cannot be accessed directly via API, you will need to install the Moveworks Agent. This is a lightweight appliance installed on your VMs behind the firewall, to allow Moveworks to securely communicate with your Sailpoint IIQ instance. This option requires no firewall changes to integrate with Sailpoint.
    Note: If you are already using the Moveworks Agent for another integration, you will need to use the same agent to connect to Sailpoint.

Please provide ALL of the above to your Moveworks Customer Success team via encrypted email.

Plugin Installation

To install the Moveworks Sailpoint IdentityIQ plugin, follow the steps below:

  1. Ensure that the plugin feature is enabled in IdentityIQ and that you have System Administrator or Plugin Administrator capabilities to install plugins.
  2. Download the latest plugin from here
  3. Open the Installed Plugins page by selecting Plugins from the list under the gear icon.

  1. Click New to upload the plugin.

  1. Click to upload your plugin. A window dialog will appear. You can drag & drop our ZIP file from there.

  1. Finish the plugin installation following the prompts in your Sailpoint Instance.

Create API Client

Make sure you complete the Plugin Installation process first.

  1. Create an Identity for Moveworks. We recommend naming the account svc.moveworks.

  1. Make sure the new service account has the Moveworks Approvals Plugin Service Account user capabilities enabled.

  1. Go to configure API Authentication.

  1. Create a new API Client, setting the Proxy User to our service account.

  1. Send your OAuth Client ID and Client Credentials to your CSM.

Skill-Specific Access Needs

The Moveworks Plugin grants all the necessary permissions needed to interact with the relevant objects in your Sailpoint instance. There are no further Skill-Specific Access Needs that need to be applied for the integration.

Once you’ve completed the above, speak with your customer success team to complete the implementation.