SailPoint Identity Security Cloud Reviews

The Certification and Provisioning features are most valuable.

Manager Certification helped to review user access and revoked unnecessary accesses to various applications.

The connector for EPIC, ServiceNow, and Duo.

More than a year.

None, except cosmetics issues related to UI and documentation.

No.

Excellent.

We didn’t have a solution for Certification, but we had a homegrown solution for all other IAM processes. For various reasons, we switched to IIQ.

It was straightforward.

They are expensive.

Yes. We tried Oracle and ForgeRock IAM products.

Just go for this product. Its awesome.

The level of customization for data imports and role modeling, because it helps to integrate faster, support easier and let it reuse the organization role structure.

It allowed us to execute account review campaigns from very different systems.

Some setups should be done in the interface and in the code, and could be made simpler.

So far, from 2008 to 2017: 10 years.

No, the product is stable.

As long as the database is very close to the application server, the system can manage many identities and connectors to various directory.

Their technical support was very knowledgeable of their product, and we get answers within a day or so most of the time.

Most of the clients kept the solution after using SailPoint IIQ. The only one that considered not using it anymore wanted to keep his historical supplier and to have the same solution for Identity Governance and Administration and for Authentication (which is not something SailPoint provides).

Initial installation is straightforward and takes less than one day, once you have a VM, a database, and a directory available. What takes the most time is the connectivity to each authoritative source and target directory.

SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities.

Many clients considered the other main IGA solutions, like Oracle Identity Manager, CA Identity Manager, Microsoft Identity Manager, or NetIQ Identity Manager.

Make sure the distance between the database and application server is very short. There is natural integration with other solutions that should be considered in your selection, like with CyberArk or ServiceNow.

Security and administration for any new/current access.

Manage process and search information.

It improves the function for CMS - the website is a centralized system to manage accounts and access for CMS applications.

It allowed to implement the automated processes when a new employee is hired. It allows to have a main central process for new hires.

I've used it for three years now.

No, but we encountered some bugs after the implementation and they were fixed.

A few of them - they were connection and performance issues but they both have been fixed.

Yes. We needed to contact Sailpoint directly to address the issue.

It was ok.

It needs to improve SLA.

The client made the decision.

Both vendor team and in-house.

I wasn't involved in the process, but other solutions were evaluated before choosing this one.

Verify the requirements and the growth.

User provisioning and the role management features are good.

The advanced provisioning features require more improvement.

I have used this solution for seven years.

I would rate the technical support a 4/5.

The setup was straightforward.

I did evaluate other options.

I would recommend this product based on the customer requirements.

• Provisioning in multiple environments
• Certification
• Provisioning Auditing

Automated accounts provisioning during the on-boarding process.

Additional details during account aggregation failures to help quick troubleshooting.

We started with our customer last fall.

No issues encountered.

None.

Initial testing with a large amount of cubes (over 60K) went well.

Good.

Good - via a forum (Compass) and ticketing system.

SailPoin

Yes, we used Sun Identity Management and we switched because Sun IDM is coming to the end of its life.

It was straightforward as we have a lot of experience with Sun IDM.

I am part of a consulting service team who can provide Identity Management platform implementation. We have been helping our customer implement Sun IDM in the past and last fall, we helped the customer in SailPoint.

Oracle Identity Manager was the other one we helped evaluate.

Understand the customer's business practice regarding provisioning.

Access Governance has become and integral part of cyber security. It is essential to keep track of who has what access. Sailpoint IIQ simplifies this by providing an OOTB module for access certification. Administrators can create, schedule and design certification with just a few clicks.

A lot of OOTB connectors for managing various types of applications. Simplified process for application on boarding and provisioning.

Simplified Access Governance and Life Cycle Management. Easy to implement in comparison to other IAM tools.

Should have authentication modules as well

We had no issues with the deployment.

We had no issues with the stability.

There were no issues with scaling it for our needs.

The initial setup is straightforward. Easy installation and configuration.

Implement Sailpoint IIQ for Access Governance and for simplified Identity Management.

• Certification
• Full Life Cycle management of IT system accounts

• It has, for the first time, consolidated a single view of a user's access to the company's multiple IT systems
• This has now allowed us to confidently cleanup a large proportion of accounts that could not previously have been easily identified as no longer required
• Furthermore, it has forced ownership of non-user/non-individual accounts and accountability of them

• Reporting and some GUI aspects. Reporting lacks the flexibility of retrieving the vast amount of data that we know is in the database, but not easily accessible
• Scheduling also comes short, specifically when it comes to multiple jobs that are interdependent (e.g. preventing certain groups of jobs from running concurrently)

Five years across different companies.

Yes - Some application connectors (namely Lotus Notes) - have some fundamental flaws. But the major issue was cleaning up, what we expected to be, authoritative data - specifically HR data, and users not in HR (eg. contractors, etc) and ensuring global consistency and adherence to standards.

Not of the core product, but some issues with some of the connectors (especially Lotus Notes, and ServiceNow). This has led to some issues with daily batch jobs which either time out, hang, or are terminated and this has in turn, we suspect, created some internal DB link corruptions.

Not yet. Though current nightly batch jobs range from completing within 8 hours to 48 hours, with no obvious reasons as to why

Very good.

Very good.

Yes we did. We switched because the solution no longer offered support as it was sold to Sailpoint.

It was complex. Identity and account management is very heavily dependent on the accuracy, authority, and timing of the source data. As the implementation progressed, we became aware more and more that some of the missing detail (especially around the exceptions of when a central unique Employee number is actually "central" or consistent, or the complexity of some of the attributes - e.g. whether their validity is date dependent, allowing for multiple values, etc) will cause issues in the proposed processes and the timing of providing access when required.

We used a vendor whose level of expertise was excellent.

No ROI as of yet.

It was two years give or take.

Yes - NetIQ, Oracle, and SAP.

Spend double the time/money up front in fully understanding your business requirements, opportunities for process changes. Also ensure you get a detailed understanding of identity and access business processes and understand your HR (and other authoritative) data source.

• Access risk alerts
• Access Certification
• Self-Service Access Request
• Password Management

• Development framework
• Workflows configuration

Two years.

No issues encountered.

No, the platform has been stable.

Yes, I found some scalability issues:

• Java.lang.OutOfMemoryError: Java heap space
• Advanced searchs with 0 rows

7/10.

8/10.

Yes. In several customers we have switched to SailPoint IdentityIQ due to the unified architecture and intuitive centralized governance across datacenter.

The initial setup always was straightforward with shorter implementation times and quick benefits.

We haven`t calculate the ROI. Mainly, cost savings are associated to:

• Identifying unused or unauthorized accounts and reports them back to the appropriate business sponsor for removal and potential cost savings
• Reduce the cost of compliance by automating access review processes

In several cases, the IdentityIQ deployment was due to a migration from other IAM solution (Oracle Identity Manager). Usually, before deploying an IAM solution, we do a benchmark test with the customer to get the best solution for their requirements.

• Phased Deployment
• Get to know new features
• Expand gracefully/logically
• Create a change control & env. management process
• Automate where possible
• Become flexible with migrations