Identity and Access Management

SailPoint IdentityNow Security Configuration Report

An IdentityNow Security Configuration Report of a SailPoint IdentityNow environment is a valuable artefact to have. I’ve previously documented examples for generating reports for;

But what about the configuration of items such as;

  • Global Security Settings Details
  • IWA Configuration Details
  • SSO SP Configuration Details
  • SSO IDP Configuration Details

The script (further below) leverages the SailPoint IdentityNow PowerShell Module to generate a HTML report of the configuration items listed above. It also exports the configuration of each of the above features to the output directory in XML format using the PowerShell Export-Clixml command. This means that any of the configuration items can be imported and inspected as required using Import-Clixml <configItem.xml>. It also means that the configuration can be stored in your CMDB or equivalent.

HTML Report

The HTML Report as shown below lists each of the configuration elements that can be selected that then expands with the associated configuration.

Configuration Export

The following image shows the exported configuration items and the HTML report that provides a report based off them.

SailPoint IdentityNow Security Configuration Export

The Script

The IdentityNow Security Configuration Report Script below produces the configuration extracts and report.

Update:

  • Line 4 for your IdentityNow Organisation Name
  • Line 10 for a graphic you’d like in the report. The script is hard coded for a graphic that is 240px wide and 82px high
  • Line 11 for the base directory you’d like the report and config files to be put it.
    • A sub-directory will be created with the date and time the report is generated. This allows for you to run the script on a schedule and not worry about overwriting previous reports and config extracts.

See the gist on github.

Summary

In conjunction with the other reporting and config scripts I’ve provided it is quick and easy to generate configuration documentation and exports of SailPoint IdentityNow configurations.

Darren Robinson

Bespoke learnings from a Microsoft Identity and Access Management Architect using lots of Microsoft Identity Manager, Azure Active Directory, PowerShell, SailPoint IdentityNow and Lithnet products and services.

Recent Posts

PowerShell MCP Azure Function Server

Recently under the experimental Azure Functions build Microsoft Developer Advocates have shown enabling Azure Functions…

2 weeks ago

EntraPulse – Your AI-Powered Gateway to Microsoft Graph & Docs

Today, I’m super excited to finally announce the Beta release of EntraPulse Lite – a…

2 months ago

Lokka MCP Authentication Enhancements

I'm excited to share some significant authentication enhancements I've contributed to the Lokka MCP Server…

3 months ago

AI Inception: Building AI Solutions with AI for AI

Last month I had the pleasure of speaking at the Sydney event for Global Azure.…

4 months ago

A Have I Been Pwned MCP Server for Claude

Model Context Protocol (MCP) is a powerful framework that extends AI clients like Claude and…

6 months ago

Azure AI Developer Hackathon

I've just completed participating in the Azure AI Developer Hackathon that was looking to provide…

6 months ago

This website uses cookies.