SailPoint IdentityNow-Engineer Exam Dumps

Yes, reviewing the All Source Activity report available in Search is a reasonable action when troubleshooting incomplete identities. This report provides an overview of activity related to source systems, including account aggregations, transformations, and data flow from the source to IdentityNow. By reviewing this report, engineers can identify potential issues such as failed aggregations, data errors, or problems with source connectivity that might be causing incomplete identities.

SailPoint IdentityNow Source Activity Reports Documentation.

SailPoint IdentityNow Troubleshooting Aggregation and Source Issues Guide.

No, this example does not accurately describe an IdentityNow data flow. The step where the domain controller sends a list of accounts directly to the virtual appliance is incorrect. Instead, during manual aggregation, the virtual appliance is responsible for initiating the connection to the domain controller (or other authoritative source), retrieving account data, and then sending the results to the IdentityNow tenant. Sensitive information is masked before sending the data from the virtual appliance to the IdentityNow tenant, but the domain controller does not interact directly with the IdentityNow tenant.

SailPoint IdentityNow Aggregation Process Documentation.

SailPoint IdentityNow Virtual Appliance Data Flow Guide.

Yes, using a query select statement with a clause to match the incoming account to an existing account is a key configuration for the Single Account SQL Query in a JDBC connector. This query is used to fetch specific account details from the database and must be written in such a way that it uniquely identifies each account, ensuring accurate correlation between the data in the source and the identities in IdentityNow. Properly configuring this SQL query ensures the right accounts are matched and managed.

SailPoint IdentityNow JDBC Connector Single Account Query Configuration Guide.

SailPoint IdentityNow SQL Query Best Practices Documentation.

Yes, the Virtual Appliances (VAs) should reside in C, which represents the on-premise network. In this scenario, the engineer has an Active Directory, a database server, and cloud applications. The VA needs to reside inside the internal on-premises network (C) to securely communicate with the Active Directory and database server. The VA will manage the secure connection to these internal resources and can also interact with cloud applications via SailPoint IdentityNow.

Key Reference from SailPoint Documentation:

VA Deployment in On-Prem Network: SailPoint advises deploying Virtual Appliances within the internal on-premises network where they can securely access identity sources like Active Directory and internal databases.

No, this statement describes Manager Certification rather than Manager Correlation. Manager Certification refers to an approval process in which managers are required to periodically review and approve the access rights of their direct reports. This is a governance feature used to ensure that employees only have the access they need, and it helps managers validate their team's access periodically. Manager Correlation, on the other hand, is about linking identities to their managers based on attributes.

Key Reference from SailPoint Documentation:

Manager Certification vs. Manager Correlation: While Manager Certification involves periodic review and approval of access by managers, Manager Correlation is strictly about linking identities to their respective managers based on defined attributes.