SailPoint IdentityIQ Review

Reporting and some GUI areas need work but we have consolidated a single view of a user's access to multiple systems.


What is most valuable?

  • Certification
  • Full Life Cycle management of IT system accounts

How has it helped my organization?

  • It has, for the first time, consolidated a single view of a user's access to the company's multiple IT systems
  • This has now allowed us to confidently cleanup a large proportion of accounts that could not previously have been easily identified as no longer required
  • Furthermore, it has forced ownership of non-user/non-individual accounts and accountability of them

What needs improvement?

  • Reporting and some GUI aspects. Reporting lacks the flexibility of retrieving the vast amount of data that we know is in the database, but not easily accessible
  • Scheduling also comes short, specifically when it comes to multiple jobs that are interdependent (e.g. preventing certain groups of jobs from running concurrently)

For how long have I used the solution?

Five years across different companies.

What was my experience with deployment of the solution?

Yes - Some application connectors (namely Lotus Notes) - have some fundamental flaws. But the major issue was cleaning up, what we expected to be, authoritative data - specifically HR data, and users not in HR (eg. contractors, etc) and ensuring global consistency and adherence to standards.

What do I think about the stability of the solution?

Not of the core product, but some issues with some of the connectors (especially Lotus Notes, and ServiceNow). This has led to some issues with daily batch jobs which either time out, hang, or are terminated and this has in turn, we suspect, created some internal DB link corruptions.

What do I think about the scalability of the solution?

Not yet. Though current nightly batch jobs range from completing within 8 hours to 48 hours, with no obvious reasons as to why

How are customer service and technical support?

Customer Service:

Very good.

Technical Support:

Very good.

Which solution did I use previously and why did I switch?

Yes we did. We switched because the solution no longer offered support as it was sold to Sailpoint.

How was the initial setup?

It was complex. Identity and account management is very heavily dependent on the accuracy, authority, and timing of the source data. As the implementation progressed, we became aware more and more that some of the missing detail (especially around the exceptions of when a central unique Employee number is actually "central" or consistent, or the complexity of some of the attributes - e.g. whether their validity is date dependent, allowing for multiple values, etc) will cause issues in the proposed processes and the timing of providing access when required.

What about the implementation team?

We used a vendor whose level of expertise was excellent.

What was our ROI?

No ROI as of yet.

What's my experience with pricing, setup cost, and licensing?

It was two years give or take.

Which other solutions did I evaluate?

Yes - NetIQ, Oracle, and SAP.

What other advice do I have?

Spend double the time/money up front in fully understanding your business requirements, opportunities for process changes. Also ensure you get a detailed understanding of identity and access business processes and understand your HR (and other authoritative) data source.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest