SailPoint Identity Platform

SailPoint Identity Platform

About TrustRadius Scoring
Score 8.3 out of 100
SailPoint Identity Platform

Overview

What is SailPoint Identity Platform?

The SailPoint Identity Platform (IdentityIQ) provides enterprise-level cloud-based or installed identity and access management (IAM) software featuring single sign-on (SSO), password management, provisioning, role management, and identity intelligence for audit purposes.
Read more

Recent Reviews

Read all reviews

Popular Features

View all 7 features
  • ID Management Workflow Automation (8)
    8.2
    82%
  • Account Provisioning and De-provisioning (8)
    8.2
    82%
  • ID-Management Access Control (8)
    8.1
    81%
  • ID Risk Management (6)
    6.7
    67%

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of SailPoint Identity Platform, and make your voice heard!

Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is SailPoint Identity Platform?

The SailPoint Identity Platform (IdentityIQ) provides enterprise-level cloud-based or installed identity and access management (IAM) software featuring single sign-on (SSO), password management, provisioning, role management, and identity intelligence for audit purposes.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

4 people want pricing too

Alternatives Pricing

What is Azure Active Directory?

Microsoft Azure Active Directory (Azure AD) is a cloud-based identity and access management (IAM) solution supporting restricted access to applications with Azure Multi-Factor Authentication (MFA) built-in, single sign-on (SSO), B2B collaboration controls, self-service password, and integration with…

What is Dashlane?

Dashlane in New York offers their flagship application for simplified login and password management, boasting an easy deployment for their business-class product.

Return to navigation

Features Scorecard

Identity Management

7.7
77%
Return to navigation

Product Details

What is SailPoint Identity Platform?

SailPoint Identity Security for the cloud enterprise manages risk from the explosion of technology access. The solution gives businesses visibility while automating and accelerating the management of all user identities, entitlements, systems, data and cloud services.

In today’s digital world, technology requires identity security. With the complexity and scale of an everywhere workforce combined with the mix of technologies that includes applications, platforms, data sets and cloud services, providing secure access is critical to managing risk and accelerating productivity. SailPoint aims to accomplish this by transforming manual processes to automated, shifting the user's security approach from technology-centric to people-centric and evolving static policies to be self-learning and adaptive.

SailPoint Identity Platform Integrations

SailPoint Identity Platform Competitors

SailPoint Identity Platform Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

The SailPoint Identity Platform (IdentityIQ) provides enterprise-level cloud-based or installed identity and access management (IAM) software featuring single sign-on (SSO), password management, provisioning, role management, and identity intelligence for audit purposes.

Oracle Identity Management, Saviynt, and One Identity Identity Manager are common alternatives for SailPoint Identity Platform.

Reviewers rate Account Provisioning and De-provisioning and ID Management Workflow Automation highest, with a score of 8.2.

The most common users of SailPoint Identity Platform are from Enterprises (1,001+ employees) and the Hospital & Health Care industry.
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

 (28)

Ratings

Reviews

(1-14 of 14)
Companies can't remove reviews or game the system. Here's why
Jayesh Bhavsar | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Reseller
SailPoint IIQ is used for identity governance and to understand who has access to what and whether that access should be granted or not. We also use it for access to recertification automation which provides a complete report of who has what access in the organization at the press of a button. We are able to automate the entire process of joiners, movers, leavers and the provisioning and de-provisioning of identities. When someone joins any organization, all their roles and access are provided at the click of a button. When they move from one department to the other, the accesses which are not required are revoked, and the ones which are necessary are provisioned. SailPoint offers complete automation of the lifecycle of any user. We are able to offer on-prem on cloud-based deployments, depending on our customer's requirements.
  • Identity Governance
  • Access Reviews (Certification)
  • Audit and Compliance
  • Risk and Policies
  • SOD Policies
  • More Out of the Box Connectors
  • Support for Customizations
  • Improved UI
Employee lifecycle, join, move, certify and leave, as well as self-service for access and password management are suitable cases.
Support for Customizations is very limited.
August 26, 2022

Great IAM solution

Score 8 out of 10
Vetted Review
Verified User
We use currently SailPoint in our company as a self-service platform for the whole management and lifecycle for the joiner mover leavers of all our employees IDs, Accounts as well for the whole management of the access right, roles and the access reviews. Also for the management for more than 200 applications that are connected to the system.
  • Management of User ID
  • Management of accounts
  • Management of access reviews
  • Management of applications
  • UI should be more user friendly
  • Management of roles
We are happy with the management of the Id, accounts where the user can request any access easily. Also the many connector which Sailpoint is offering in order to onboard lots of applications is quite helpful. The access review module has also have been improve so that large campaigns can we work out easily. Where we see some improvement is on the UI as here it is not so intuitive for the end user, so that we need to make lots of communications and training so that the user is able to understand how to use it. For the administration and creation of roles it also would be great to have some improvements here to make it more easily its management.
Score 8 out of 10
Vetted Review
Verified User
We have the IdentityIQ platform implemented within my organization, and its main benefit (although not it's only one) is the automation it brings to the Provisioning of user accounts/profiles and the automation of access via its roles functionality. Through this automation, LCM is also controlled by IdentityIQ, where people joining, moving, and Leaving the organization have their accounts subsequently amended or removed. This mechanism saves countless hours across our organization both in Technology and Business support departments. The product ties all our employee's access to our critical Applications and enables them to access them at the right time, and in the right place.
  • Brings users access, profiles and accounts all into one place
  • Manages the Life Cycle Management process across ALL identities, permanent and Temporary
  • Secures and manages access to critical applications and resources across the group
  • Enables Info. Security to customise, share and delegate authority across the group
  • Single version of the truth across our technology platform
  • The use of a Distinguished name and the lack of a clear support model for the task that is necessary for this process to work is not a good idea.
  • In a hybrid model where application automation is not fully rolled-out, means that there can be inconsistency in the process, which leads to duplicate accounts.
  • Certification: The functionality is a bit clunky and could be designed with the end-user experience in mind (Although this might be due to our version of IIQ)
This platform is well suited for managing large-scale employees/Customers/Users. Its ability to handle and work through thousands of transactions on a daily basis is one of its true benefits. Conversely, companies with smaller user bases might not feel this processing power. Organizations with a large number of users in similar roles, such as a Contact Centre or warehouse, will really benefit from being able to deploy Role-based access controls that will enable large numbers of people to access what they need in order to complete their roles. Highly audited and compliant companies would really benefit from the ability to customize and access low-level provisioning access logs.
Bryan Meckley | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
We utilize the SailPoint IdentityIQ platform to build and manage employee identities which include various types of user accounts, birthright access, and application assignment. IdentityIQ is also used for self-service account registration, password/account management, and automating several employee onboarding and offboarding workflows. By interfacing with our company's HR system, IdentityIQ allows us to quickly build and modify employee identities, reduce the required time for application assignments, and allow our hospital staff to begin working without any delays in a dynamic healthcare environment.
  • Role & Entitlement Management
  • Platform Scalability and High Availability
  • Robust Capabilities for Application and Systems Integration
  • The development process for managing and Debugging rules could use some Enhancements
  • Auditing and logging capabilities are limited
  • Documentation regarding the specific process, programming details, and system limitations are missing
IdentityIQ works well in our environment which requires interfacing with many on-prem and cloud-based applications. The multi-domain and identity governance capabilities are also very useful. Because of the dynamic healthcare environment where IIQ is being used, some additional out-of-the-box capabilities and tools would be appreciated.
Score 9 out of 10
Vetted Review
Verified User
We use SailPoint's platform for the employee lifecycle, join, move, certify and leave, as well as self-service for access and password management. This helps to drive the least privileged access, the speed of access provisioning is increased, and avoid helpdesk calls.
  • Access management
  • Password / account management
  • Certification campaigns
  • Leaver (termination) process
  • Workflow can be overly complex
  • Support for n and n-1 operating systems and target applications even though the vendor still supports the older versions (n-2 and earlier).
  • Metrics and reporting are rudimentary at best
Customer support is top-notch. The product, out of the box, works very well - do not customize it. Certifications are very flexible. The user interface is well comprehended for all experience levels of users.
Score 9 out of 10
Vetted Review
Verified User
We use On-Premise IdentityIQ product with all functionalities that are LCM, SOD Controls, BirthRight Roles, different types of Certification, custom Access Requests Workflows, custom role and service account create, update, delete request forms and workflows, custom reports, etc. Before SailPoint implementation, we had some pain points about Access Governance functionalities. So we have solved most of the painpoints.
  • Well Engineering, robust, highly capable about all departments of Access Governance
  • User Friendly, comprehensible, easy UI
  • Easy development, integration and deployment processes
  • Easier upgrade processes
  • More Country Spesific Education Opportunities
  • Adding Firewall rules management modules or connectors
  • Adding Create Access Request over voice command
We boosted on-boarding durations with Birthright roles capabilities. We gains a lot of improvements about auditing results. We determine a lots of orphan accounts, dormant accounts, unused accounts and cancel most of them.
Score 7 out of 10
Vetted Review
Verified User
It's being used to manage software and access requests for users across the organization. Especially database accesses. Users can go in to request access to a tableau data source for example, and the approval process would kick in. The user's request would be submitted for the manager to approve, then once the manager approves, the app owner can provide access or it can be set up to automatic.

We also use it to allow access to applications. Once a user requests access to an app like lucid.app, the admins can go in to submit an access request. There are ways to limit who can submit specific access requests.
  • Has a good workflow
  • Easy for developers to use
  • Not a lot of documentation out there
  • Runs into a lot of development and testing issues
It's appropriate for tools that already integrate well. Not good to force it on technologies and tools that don't natively work well with Sailpoint.
Jay C. Gomez, CISM, CDPSE, CIPM | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
We used SailPoint Identity Platform as our Identity Access Management tool for the who organization. It was managed by my team before and we've used it for Joiner-Mover-Leaver process as well as for account recertification. The issue we addressed by using SailPoint is that there were a lot of active accounts but the users have already left he organizations for a couple of years. There were a lot of inactive accounts as well as orphaned accounts and we used it to clean it up and avoid doing it manually.
  • Joiner-mover-leaver feature.
  • The availability of connectors for different applications and platform.
  • The account recertification feature.
  • During the time we acquired the solution, there wasn't a cloud version yet.
  • The SSO feature was sun-set so we used another product to use (okta).
I believe SailPoint Identity Platform is well suited for large companies and those with a lot of users and applications. It would tremendously improve their security posture in terms of user account management. It may not be ideal for small companies that have less than 100 employees but it there's a way that they can accommodate those, then I think it would be great. In our experience, it works perfectly for those using Active Directory.
Mark Routh MCPM, PMP, CSM | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Identity IQ is being used by the entire Western Union enterprise with 20,000+ users. It is our primary access request system with 750+ applications. It manages the workflow for request approval and in many cases provided the automatic provisioning and de-provisioning of accounts upon approval. We also use the system to manage our quarterly access review and re-certification process.
  • The access request work flow and back end process is exceptional. It effectively manages all of the various pieces of a request and presents the completed request to the provisioning agent as a single record. This is very helpful to the efficiency of the process since the provisioning agent only sees the completed request rather than seeing each component as it is approved. Other systems deliver the various request components to provisioning as they are approved but cannot be provisioned without all the components. Thus creating complexity for the provisioning agent and impacting the SLAs with what looks like a delay with the provisioning process.
  • The system is robust enough to effectively handle the scale that we need. With 750+ applications, 24,304 individual entitlements to select from, and an average of 10,200 request transactions per month. We have never had any performance issues.
  • The system flexible enough to accommodate our complex business needs without needing to customize the base system. We have been able to add significant functionality to the system in order to support the business needs by extending the code rather than altering the base code. This has enabled a simple upgrade of the system without having to re-apply code enhancements.
  • The user interface is not very intuitive. It is hard for the occasional user to navigate through the request process. There are no instructions on the screen to help the user to know what to do. It is left up to the user to figure out what to click on and how to navigate through the process.
It is most appropriate for organizations that categorize the request in a "role" configuration but is quite appropriate for "entitlement" based configurations as well. Its flexible configuration is very effective for accommodating any business needs in an efficient manner.
Omon Edeki | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
I implement SailPoint IdentityIQ for enterprises who are looking to manage their overall risk posture, typically across the most sensitive parts of their organizations; The main business problems the solution address is around proactive access management. In an organization where you have hundreds (or some cases) thousands of users constantly joining, leaving or moving within the company to take on complex projects, IT has the burden to assure that users have the application access required to do their jobs. Imagine orgs that have multiple roles, job functions, geographies, and regulations; accurately granting access and limiting access can be a major undertaking and IIQ helps to manage the complexity of that entire process, which is what is referred to as identity lifecyle management.
  • Providing accurate visibility enterprise-wide to who has access to what applications and data, across the entire organization.
  • Seamless automatic provisioning of access based on matrix defined job roles and job functions , simplifying the provisioning process.
  • An elegant interface to manage certifications and to limit access as customers change their job functions or projects (typically within 12-24 months).
  • Technical adoption requires a high level of training and experience by the implementing teams.
  • SailPoint and partners offers very good training courses which I think are very good. An area of improvement can be in providing cloud VMs that users can work with to learn the IIQ tool more effectively at their own pace.
If you are holding customer information, then you need IIQ or some kind of identity management system. While smaller companies can live without it, as you grow and add new applications, regions and offerings to your customers, it is critical to manage access to customer and operational data. Business data today is very much similar to capital, and you want to properly manage who access to your capital resources demonstrating prudence and vigilance to customers.
Score 6 out of 10
Vetted Review
Verified User
We use it for: access provisioning, self service password reset, and database password synchronization.
  • Very customizable interface
  • Ability to connect to many enterprise databases and systems like AD
  • One integrated product built from the ground up with the entire identity lifecycle in mind.
  • Beanshell is used to program it - this is an old variant of Java pre-generics. This language essentially died in 2005 and there is no reason a product like this should be using it.
  • There is no built-in way to version control the scripts that are used. We had to develop our own system to properly follow the SDLC.
It definitely is better than the Oracle suite of products in that there is one unified product which handles what you'd need multiple Oracle products for. That said, it is not very exciting or cutting-edge to work with.
April 12, 2017

Review of IdentityIQ

David Riddel | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Reseller
IdentityIQ is used both as an IAM tool to manage user logins across various devices and software. This includes Windows accounts, our timesheet software, email accounts, and a few other software tools used by our engineers. Additionally, IdentityIQ also is used for very specific workflows that require the contribution of several employees. For example, we have a team that is spread out over three different client sites in different time zones. They use the workflow to ensure that all of their steps are taken care of in an organized manner.
  • It's great for specific workflows that bottleneck around a certain individual. IIQ identifies the bottleneck and "shames" that employee to pick it up. With an IIQ developer, you can make almost any workflow that you need.
  • It's great for people who forget their Windows password a lot, especially if you have a password policy that requires constant changes. IIQ allows the user to select "forgot password?" on the Windows login.
  • It's great for administrators because now they can admin a user's accounts all in one spot instead of keeping records across several pieces of software.
  • Making it easier to create workflows would be helpful. Especially if an admin could do this work. Developers cost more...
IIQ is well suited for an organization with a large amount of users that use lots of software. It's also good for developing workflows so that workers can organize their process.
Score 9 out of 10
Vetted Review
Verified User
We do not use IdentityIQ in our company. We as a contractor implement IdentityIQ.
  • Access certifications are one of the best features in IdentityIQ. You will be able to approve and extend employee's access to different applications periodically and it reduce the risk of unnecessary long time accesses to the applications.
  • I personally like the role-base access control feature in IdentityIQ. It helps you to find out the existing roles in the systems and assign access to those roles. That makes it easy to implement the software in large organizations.
  • Although the risk factor are chalenging to define in first place but they'll be very usefull to give the management team a good view of high risk previleged employees.
  • I would like IdentityIQ to have a directory service built in and not [be] dependent to other directories.
  • Having Single Sign on would be a great improvement.
  • Although they are adding more and more connectors to IdentityIQ, they are applications that they don't have a connector and the implementor has to develop a connector for that.
IdentityIQ is the best choice for very large organizations with complicated processes and paperwork. The ability of custom workflows in IdentityIQ would help organizations to boost the speed and accuracy of their business processes. Automation is another factor that makes IdentityIQ best choice for large firms. This feature would provide end to end automated provisioning and de-provisioning in several applications.
Terry Garbo, CISSP GCIH GCFE | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Our company did not have an IAM solution, and was relying on pen/paper to conduct certifications. After conducting POCs with 6 vendors, SailPoint clearly stood out. The ease of implementation (along with IdN) and the intuitive nature of the product make it a winner. And support from SailPoint is fantastic. Simply a great product.
  • Certifications
  • Campaigns
  • Access requests
  • Code releases not completely vetted and tested prior to release
  • Support questions go to a forum to be answered
  • Price
Its the best in the business
Return to navigation