SailPoint delivers industry-leading identity governance and security capabilities — but those capabilities are only as strong as the identity data feeding them. SPHEREboard Governance and Remediation closes that gap, continuously cleaning, correlating, and enriching identity data across the enterprise so SailPoint ISC operates on complete, accurate, and accountable information.
Together, SPHEREboard and SailPoint give organizations a unified view of who has access to what, clear ownership of every identity, and the operational discipline to govern access as it actually exists — not just as it's documented.
Key Capabilities
- Identity data quality management and governance coverage expansion
- Identity governance maturity acceleration and operationalization
- Audit and compliance readiness enablement
- Identity infrastructure simplification and technical debt reduction
- Unified visibility across governance systems and operational identity data
Technical Details
- Integration Standard:
SPHEREboard consolidates, normalizes, and enriches identity data from multiple sources (AD, Entra ID, databases, PAM, HR systems, etc.) and feeds governed, reconciled identity context into SailPoint ISC to support lifecycle management, access governance, and certification processes.
- API Endpoint:
API-based pull integration with SailPoint ISC (REST APIs over HTTPS)
- SailPoint Connector:
SaaS Connector for SailPoint Identity Security Cloud (ISC)
- Authentication Method:
OAuth 2.0 Client Credentials Grant (secure machine-to-machine authentication using client ID and client secret)
Data Mapping
User Identity Mapping:
- Identity correlation based on unique enterprise identifiers (e.g., employee ID, email, or HR system unique key)
- Cross-source identity resolution performed in SPHEREboard to ensure a single unified identity profile before publishing to ISC
- Supports reconciliation across infrastructure, AD, Entra ID, HR systems, and application directories
Group Mapping:
- AD / Entra ID security groups mapped to SailPoint entitlements or access profiles
- Normalization of group naming conventions and nested group structures
- Optional enrichment with ownership, business unit, and risk classification metadata
- Supports role mining and entitlement aggregation for certification campaigns
Lifecycle Management
Deprovisioning:
- SPHEREboard identifies stale, orphaned, or high-risk accounts and flags them for governance action in SailPoint ISC
- Deprovisioning decisions executed in SailPoint based on reconciled SPHEREboard identity context
- Supports automated and policy-driven removal of access across connected systems (AD, databases, PAM, applications) via SailPoint workflows
- Ensures alignment between HR-driven lifecycle events (joiner/mover/leaver) and technical system entitlements
Supported Identity Operations
- Centralize and correlate identity data from SailPoint into SPHEREboard, and feed enriched identity context back to SailPoint.
- Enhance governance, risk and operational visibility
- Support executive and cyber-risk reporting
- Improve non-human and privileged identity oversight (if applicable in your scope)
Support Level: Technology Partner Delivered
This connector is developed and supported by AM Identity. For assistance, please reach out to
Fredy Alejandro Martinez Pardo – [email protected]
Rosario Mastrogiacomo - [email protected]
Related Documentation
ISC Connector Implementation Guide.pdf
SailPoint Solution Overview.pdf
SailPoint Connector Implementation Guide.pdf
Solution Brief SailPoint.pdf