SailPoint Interview Questions and Answers

SailPoint-Interview-Questions-and-Answers

 

List of SailPoint Interview Questions and Answers. A place where interview questions of SailPoint IIQ will be discussed.

SailPoint IIQ is one of the famous IDAM tool. IDAM means Identity and Access Management Tool. Through SalPoint IIQ we can manage the life cycle of user in any Organization.

 

Here we will study about the SailPoint interview questions and answers. so let’s begin.

List of SailPoint interview questions and Answers

  1. What is the full form of SailPoint IIQ?
  2. What is the full form of IAM?
  3. What is IAM?
  4. What is Identity warehouse in SailPoint?
  5. What is Identity?
  6. What is Identity cube in SailPoint IIQ?
  7. What is Application in SailPoint?
  8. What is Application on-boarding in SailPoint IIQ?
  9. What are the various types of connectors in SailPoint IIQ?
  10. What is Schema in Application in SailPoint IIQ?
  11. What is identity attribute in SailPoint IIQ?
  12. What is display attribute in SailPoint IIQ?
  13. What is multi-value attribute in SailPoint IIQ?
  14. What is Authoritative Application in SailPoint IIQ?
  15. What is Non – Authoritative Application in SailPoint IIQ?
  16. What is Entitlement in SailPoint IIQ?
  17. What is role in SailPoint IIQ?
  18. Types of Roles in SailPoint?
  19. What is Entitlement Catalog?
  20. What is Aggregation?
  21. Types of Aggregation in SailPoint
  22. some options in Account Aggregation
  23. What is task in SailPoint?
  24. List few out of the box tasks in SailPoint
  25. What is Identity Refresh Task?
  26. What is managed attribute in SailPoint IIQ?
  27. What is extended attribute in SailPoint IIQ?
  28. What is searchable attribute in SailPoint?
  29. What is default username and password of SailPoint IIQ?
  30. What is Rule?
  31. List some rules in SailPoint?
  32. What is Aggregation rules?
  33. What is Correlation Rule?
  34. What is customization rule?
  35. What is creation Rule?
  36. What will happen, if we don’t create correlation rule
  37. What is workflow?
  38. What do you mean by Provisioning in SailPoint?
  39. What is provisioning plan?
  40. What is provisioning project?
  41. What is WorkItem in SailPoint IIQ?.
  42. What is Access review in SailPoint?
  43. What is Joiner, Mover, Leaver in SailPoint IIQ?
  44. How to access SailPoint debug page?
  45. how we can encrypt and decrypt the password?
  46. List few SailPoint objects?
  47. What is context in SailPoint IIQ?
  48. What is IQServices?
  49. What happend if we don’t use IQ service?
  50. What is the default port of IQ Service?
  51. What is Quicklink in SailPoint?

 

 

What is the full form of SailPoint IIQ?

Full form of SailPoint IIQ is SailPoint Identity IQ.

 

What is default username and password of SailPoint IIQ?

Default user name of SailPoint IIQ  is spadmin and password is admin.

What is the full form of IAM?

IAM refer to Identity and Access Management. SailPoint is one of the Identity and Access Management tool.

 

What is IAM?

IAM is Identity u& Access Management. It majorly focus on the access management. It ensure that right people should have only right access on which they are authorized to access.

SailPoint IIQ Interview Questions on Identity

Below are the various interview questions related to SailPoint Identity. Identity is integral part of SailPoint IIQ, everything revolves around an Identity.

What is Identity warehouse in SailPoint?

Identity warehouse is the place where all the identities are present. all identities data can be located in one place called Identity Warehouse.

 

What is Identity?

Identity is an user information who has access on some application. Identity is kind of user information.

 

What is Identity cube in SailPoint IIQ?

Identity cube is the 360 degree view of the Identity. 360 degree means all the information related to identity can be found under identity cube. information like personal details, access on applications, policies, entitlements, rights etc.

 


SailPoint Interview Questions on Application

What is Application in SailPoint?

Application you can say is the target object which will be configure in SailPoint on which SailPoint will do the governance on its data. Application will have accounts data of the users.

 

What is Application on-boarding in SailPoint IIQ?

Application on-boarding means to setup the Application in SailPoint. In Application on-boarding various activities are being configured like

  • how to fetch the data.
  • how to correlate the data.
  • how provisioning will be handle etc.

 

What are the various types of connectors in SailPoint IIQ?

Sailpoint provides more than 60+ out of the box connectors like

  • Active directory connector
  • JDBC type connector
  • Web service connector
  • Delimited file connector
  • SAP based connector  etc.

 

What is Schema in Application in SailPoint IIQ?

Schema means information of application attributes.  All application account data is stored in these attributes. Suppose there is HRMS application then HRMS application schema could be

Emp ID, Emp Name, Email ID, Status, DOJ, DOL etc.

 

What is identity attribute in SailPoint IIQ?

Identity attribute is that attribute which is consider as a unique identifier in Application while doing application on-boarding.

 

What is display attribute in SailPoint IIQ?

Display attribute in SailPoint is used to display the attribute value in Account section of Application. Whatever the attribute will be set in display attribute, that value of the account will be shown.

 

What is multi-value attribute in SailPoint IIQ?

As name suggest multi-value means more than 1. In application , if any attribute has more than one value, that attribute is marked as multi-value attribute.

 

What is Authoritative Application in SailPoint IIQ?

Authoritative application in SailPoint is trustworthy application for SailPoint IIQ. Authoritative  application is that application on which SailPoint IIQ can rely that its account data is coming from some promised or authoritative source like HRMS system.

 

What is Non – Authoritative Application in SailPoint IIQ?

Non-Authoritative application in SailPoint IIQ is normal application, its not that much trusted as Authoritative application. Most of the integrated applications in SailPoint IIQ is  Non-Authoritative applications.

 


SailPoint Interview Questions on Entitlements

What is Entitlement in SailPoint IIQ?

Entitlement is the permission of the identity on some application or resource. When any identity has any access on some application then that access is called entitlement in SailPoint IIQ.  Read more about Entitlement in SailPoint.

 

What is role in SailPoint IIQ?

Role is a bundle of entitlements in SailPoint IIQ. Multiple entitlements are club together to make a Role. We can say that role consist of multiple entitlements.

The purpose to create the role in SailPoint is that whenever new resource joins any organisation,some role is assigned to him/her according to the designation or nature of the work he/she responsible.

Suppose if any developer join the organisation, then developer role will be assigned to that resource, so that he/she get all the entitlements or access which is required for the development.

Therefore, any organisation creates roles according to its need.

 

How many types of Roles in SailPoint IIQ?

There are basically three types of roles in SailPoint IIQ:

Organization Role: Organization roles are created at organizational level. Every organization creates roles according to its business or need

Business Role: Business roles in Sailpoint are created according to business. Business roles are actually just designations like Supervisor, Manager, Director role etc. The purpose of creating business role is just to identity the different classifications of roles.

IT Role: IT roles in SailPoint are made up of entitlements. One or more entitlements are group together to make IT Role. Actual entitlements are present in IT Roles.

 

What is Entitlement Catalog?

Entitlement catalog in SailPoint is the location where entitlements of all the application resides. we can find entitlements of any application in entitlement catalog.

 


SailPoint Interview Questions on Aggregation

What is Aggregation in SailPoint?

Aggregation in SailPoint is the process of fetching the target application data into SailPoint IIQ.

 

What are the various types of Aggregation in SailPoint?

In SailPoint ther are mostly two types are commonly used for Aggegation

 

List some options in Account Aggregation task?

There are few options while configuring Account aggregation task in SailPoint IIQ:

  • Refresh assigned and detect roles – If option is selected then it will refresh the roles to the identies being aggregated.
  • check Active Policy – If this option is selected then it will check the policies and it will apply those policies to the identities.
  • Only create links if they can be correlated to an existing identity.
  • Maintain the identity risk scorecards.
  • Maintain identity histories
  • Enable delta aggregation.
  • Detect deleted accounts.
  • Disable optimization of unchanged accounts
  • Promote managed attributes
  • Enable partitioning

So, these are the few options present in account aggregation task which are easy to remember.There are few more options are present in account aggregation task.

 


SailPoint Interview Questions on Tasks

What is task in SailPoint IIQ?

Tasks in Sailpoint is a object who performs certain activities. It clears from its name Task means who perform some task.

 

List few out of the box tasks in SailPoint IIQ?

Below are few most used out of the box tasks available in SailPoint IIQ

  • Account Aggregation task.
  • Account group aggregation task.
  • Data export task.
  • Identity Refresh Task.
  • Identity Request maintenance

 

What is Identity Refresh Task?

As its name suggest the Task which refresh the identity is called identity refresh task. Identity refresh task is run for so many reasons like

  • if any event has to trigger on identity.
  • To update the links of identity.
  • To refresh the identity after aggregation.
  • To refresh identity attributes.
  • To refresh manager status.

There are so many other reason we need to run Identity refresh task. Identity refresh task is also called Refresh identity cube.

 


SailPoint Interview Questions on Attributes

What is managed attribute in SailPoint IIQ?

Managed attribute is a attribute in application schema. if any attribute is marked as managed  then that attribute will act like entitlement attribute for that application, if you select promote managed attribute to entitlement in Aggregation.

 

What is extended attribute in SailPoint IIQ?

Extended attribute in SailPoint store the implementation specific data of an SailPoint object like Application, roles, link etc.

 

What is searchable attribute in SailPoint IIQ?

Searchable attribute are those attribute in SailPoint which are configured as searchable. The purpose of configuring or make an attribute as searchable is to use in report or auditing. SailPoint provide few out of the box searchable attributes.

We can also configure any attribute as searchable attribute, but before making any attribute as searchable attribute, we have to think twice because searchable attribute can impact SailPoint performance.

 


SailPoint Interview Questions on Rules

What is Rule in SailPoint?

Rules are integral part of SailPoint IIQ. The purpose of the SailPoint rule is to fulfill the business requirement by writing logic. Business logic is written in Beanshell language in SailPoint rules. Rules are needed in every step like aggregation, provisioning, leaver etc.

 

List some rules in SailPoint?

There are so many rules are present in SailPoint IIQ. few are listed below:

  • Identity correlation rule
  • Customization rule
  • Identity creation rule
  • Before Provisioning rule
  • After Provisioning rule
  • Build Map rule

 

What are Aggregation rules in SailPoint IIQ?

Aggregation rules are those rules which used during Aggregation. Aggregation is the process of fetching application data into SailPoint IIQ. Common aggregation rules are:

  • Correlation Rule
  • Customization rule
  • Creation Rule

What is Correlation Rule?

Correlation rule is a aggregation rule. The purpose of the correlation rule is to correlate the accounts to identities during account aggregation task.

The main purpose id the correlation rule is to find and do the identity – account mapping, It map the application account to that identity.

 

What is customization rule?

Customization rule is another aggregation rule of SailPoint IIQ. As its name suggest it provide the facility to customize the data during account aggregation task. We can modify the data while fetching from Application and before storing it in SailPoint IIQ with the help of customization rule.

 

What is Identity creation Rule?

Identity Creation rule is another aggregation rule. Purpose of Identity creation rule is to create the identity. During aggregation if SailPoint did not find suitable identity to map the application account, then It create the new identity for that account. New created identity remains uncorrelated.

What will happen, if we don’t create correlation rule

if we don’t create correlation rule then all the accounts will be remain uncorrelated because they will not able to find the matching identities.

 


SailPoint Interview Questions on Workflow

What is workflow in SailPoint?

Workflow is the step by step execution to perform some task. In SailPoint workflows are also called business process because it the process the business logic or need through step by step execution.

 


SailPoint Interview Questions on Provisioning

What do you mean by  Provisioning in SailPoint IIQ?

Provisioning is the process of providing the access to identities on application.

 

What is provisioning plan in SailPoint?

Provisioning plan contains the information about the identity, application. provisioning plan contain information about three things:

  • which identity need
  • what access on
  • which application

 

What is provisioning project?

Provisioning project has all the information of provisioning plan request. Its a compiled provisioning plan.

 

What is WorkItem in SailPoint IIQ?

WorkItem is the item on which user intervention is required. In SailPoint Workitem is created to act upon it by some user. The Workitem is assigned to some user so that he/she can approve or reject an action.

 

What is Access review in SailPoint?

Access review means to review or validate the access of the employee by its Manager. Manager validate or review that whatever the access user hold, that access is required him to perform the operations in his job.

 

What is Joiner, Mover, Leaver in SailPoint IIQ?

Joiner: Joiner is the event trigger when any user join the organization. Whatever the action required during joining of the employee is configured in joiner.

Mover: Mover is another event trigger when any employee moves from one department to another department.

Leaver: The Leaver event is triggered when employee left the organization.

 

We are regularly updating this page to add more interview questions of SailPoint IIQ. You can read our SailPoint tutorial to know more about SailPoint IIQ.

 

How to access SailPoint IIQ debug page?

SailPoint IIQ debug page is the backend of the SailPoint. SailPoint debug page can be access by putting /debug after the URL of the installed SailPoint IIQ tool.

http://localhost:8080/identityiq/debug

 

How we can encrypt and decrypt the password?

password can be encrypted and encrypted by using decrypt rule. Decrypt rule is out of the box rule provided by default in SailPoint IIQ.

By using context.encrypt(“password”)  and context.dencrypt(“decryted password”) methods we can encrypt and decrypt password in SailPoint IIQ.

 

List few SailPoint IIQ objects?

Below are the few SailPoint IIQ objects:

  • Identity
  • Workflow
  • Workitem
  • rule
  • Application
  • Bundle
  • Managed Attribute
  • Certification
  • Custom
  • Form
  • Policy
  • QuickLink

 

What is SailPointContext in SailPoint IIQ?

As per the official documentation of SailPoint IIQ, SailPointContext is the API for accessing the data from the database stored by the SailPoint IIQ. Various core functionalities can be performed by using using SailPointContext or simple context.

 

What is IQ Services?

IQ Services are used in Active Directory (AD) based application. IQ service is used to interact the Window based Active Directory to SailPoint IIQ. As AD is based on .net framework and SailPoint IIQ is implemented in Java, so we need some intermediate between .Net and Java to interact with each other.

 

What happens if we don’t use IQ service?

If we don’t use IQ service still SailPoint IIQ can connect with Active Directory. In this case only data can be read from the AD server. We can not use provisioning and password change functionality without using IQ Service.

 

What is the default port of IQ Service.

5050 is the default port of IQ Service.

 

What is QuickLink in SailPoint?

QuickLink is the link which is shown over the homepage of the SailPoint IIQ tool. As its name suggest, it is easily accessible over the front page or in navigation menu bar.