SailPoint Identity Security Cloud Reviews

The solution includes all aspects of user lifecycle management, like joiners, movers and leavers, regulatory compliance, reporting and auditing. And the compliance part of the solution includes certification from time to time basis. All these are usual IEM cases. The aforementioned instances are all IAM cases.

The first valuable feature of the solution is its interface. The second feature of the solution is the level of flexibility it provides. So, it can be easily configured by a person using just a few rules and coding standards, after which that person can make anything out of the solution. SailPoint is quite an old solution in the market. So they know what new things are coming into the market along with artificial intelligence, and they have ensured that they have integrated into their solution the developments over time. Basically, SailPoint is up to date with the market standards.

Regarding the scope for improvement in the solution, reporting is an area that can be a bit more UI-oriented. Apart from that, it's a very good product, and I do not have any complaints about it.

Our company works as a distributor in the Middle East region for SailPoint. So, we are not just selling the product but also selling other products. I have been working with SailPoint IdentityIQ for eight years. Presently, I am working with SailPoint IdentityIQ Version 8.3.

It's a totally stable and very robust product. I've never seen it going down in the last eight years. I rate the solution's stability a ten out of ten.

Since it is a very scalable product, I rate the solution's scalability a ten out of ten. Our clients include small, medium, and enterprise businesses.

Since SailPoint is a big company, it usually takes time. The company has to schedule an appointment with the people and organizations to address their issues. So, I rate the solution's technical support a seven out of ten.

Neutral

Given a person has a background in implementing solutions, site architecture, and infrastructure, I rate the difficulty level of the current solution as an eight out of ten, with one being very difficult and ten being very easy.

The solution is deployed on the cloud, hybrid cloud and on-premises.

The basic deployment of SailPoint over user lifecycle management can depend on a client's use cases. However, for the basic setup of the system, it may take a week or so to get the solution ready with everything configured. One architecture is enough to carry out the deployment process. Also, the number of people required for maintenance depends upon the total number of use cases we have configured, so we can't categorize or quantify it.

I rate the solution a seven on a scale where one is cheap and ten is too expensive. In short, the solution falls under the higher side of pricing. For the solution, our company has secured a perpetual license.

I would tell those planning to use this solution that it is a very good and robust product in the market which supports almost all use cases. Also, SailPoint plans to expand to consumer identity. If one plans to proceed with this product, it will be a good decision. Additionally, it is not feasible for very small businesses, but it could be an amazing product and a good investment for the medium to large organizations. Overall, I rate the solution an eight out of ten.

• Access risk alerts
• Access Certification
• Self-Service Access Request
• Password Management

• Development framework
• Workflows configuration

Two years.

No issues encountered.

No, the platform has been stable.

Yes, I found some scalability issues:

• Java.lang.OutOfMemoryError: Java heap space
• Advanced searchs with 0 rows

7/10.

8/10.

Yes. In several customers we have switched to SailPoint IdentityIQ due to the unified architecture and intuitive centralized governance across datacenter.

The initial setup always was straightforward with shorter implementation times and quick benefits.

We haven`t calculate the ROI. Mainly, cost savings are associated to:

• Identifying unused or unauthorized accounts and reports them back to the appropriate business sponsor for removal and potential cost savings
• Reduce the cost of compliance by automating access review processes

In several cases, the IdentityIQ deployment was due to a migration from other IAM solution (Oracle Identity Manager). Usually, before deploying an IAM solution, we do a benchmark test with the customer to get the best solution for their requirements.

• Phased Deployment
• Get to know new features
• Expand gracefully/logically
• Create a change control & env. management process
• Automate where possible
• Become flexible with migrations

We use it to automate onboarding and offboarding processes.

The basic concept is most valuable. I like how they have designed the solution. They create an Identity Cube, and then they do all the processes and configuration around the Identity Cube. 

It is too technical. You need really good technical skills in Java and other technologies, which are hard to find. If they can make it easier so that things can be done with a few clicks, it will be great.

It should also have more standard connectors. Its price should also be reduced.

I have been using this solution for more than 15 years.

It is surely stable.

It is scalable.

I have not interacted with their technical support.

Its initial setup is not straightforward. No identity management solution is straightforward.

It is a costly solution. Its cost, for sure, should be reduced.

If you want to use a non-Microsoft application, then, for sure, go with SailPoint, but if your use cases are only using Microsoft applications, then go with Microsoft.

I would rate SailPoint IdentityIQ a seven out of 10.

We primarily use the solution for regular connectors with LVAT connectors, Workday connectors, and Provision.

You can scale the solution if you need to.

The solution is stable and reliable.

The solution has plenty of places that need improvement and attention.

The connectors are far too manual. This needs to be automated a bit.

The provision is not very intuitive. The interface is not user-friendly at all. They could redesign a lot of its functionality to make it easier to use.

The initial setup could be simplified. It's difficult right now.

Implementations rarely go well.

I can't think of other features that I would like to see in a future release.

I've been using the solution for about ten years now. It's been a long time - a decade at this point.

The solution is reliable. It doesn't have bugs or glitches that affect its performance. It doesn't crash. It's stable.

You can scale the solution quite easily. That wouldn't be a problem for a company.

I have experience with NetIQ, and I prefer it to this solution.

The initial setup isn't really complex, but it is difficult. It could be simplified in many ways. Right now, it's not straightforward. Up to 80% of implementations do not go to plan.

We handled the implementation ourselves. We didn't use an integrator or reseller to assist us during the initial setup. It was all handled in-house.

Our organization does not have any business relationship with the product.

I don't believe I would recommend the solution. I'd advise other organizations to use NetIQ instead. It's a better solution, in my opinion.

I'd rate the solution five out of ten overall.

 80% of my job is handling a software spike. If the project has failed, then I'm the one coming in to help clients and doing it for them. I've noticed that 80% of all SailPoint implementations do not go well.

Access Governance has become and integral part of cyber security. It is essential to keep track of who has what access. Sailpoint IIQ simplifies this by providing an OOTB module for access certification. Administrators can create, schedule and design certification with just a few clicks.

A lot of OOTB connectors for managing various types of applications. Simplified process for application on boarding and provisioning.

Simplified Access Governance and Life Cycle Management. Easy to implement in comparison to other IAM tools.

Should have authentication modules as well

We had no issues with the deployment.

We had no issues with the stability.

There were no issues with scaling it for our needs.

The initial setup is straightforward. Easy installation and configuration.

Implement Sailpoint IIQ for Access Governance and for simplified Identity Management.

We use this solution for identity governance and to understand who has access to what and whether that access should be granted or not. We also use it for access to recertification automation which provides a complete report of who has what access in the organization at the press of a button. We are able to automate the entire process of joiners, movers, levers and the provisioning and deprovisioning of identities. 

When someone joins any organization, all their roles and access is provided at the click of a button. When they move from one department to the other, the accesses which are not required are revoked, and the ones which are necessary are provisioned. Sailpoint offers complete automation of the lifecycle of any user.

We are able to offer on-prem on cloud based deployments, depending on our customer's requirements. 

This solution has made our team more effective. We need less manual approvals when someone new joins our company. There is less paperwork and fewer support tickets raised for access. 

The number of integrations that they have is amazing. The flexibility of the tool is great and you can really customize a lot. The dashboards that can be created are very useful. The proactive revoking of accesses in the case of an attack is amazing.

The cost of this solution is high. The technical assistance center could be improved. They're very good, but considering the intricacies of the solution, they can further improve.

We have been using this solution for six and a half years.

This is a stable solution. 

This is a very scalable solution. A couple of million users can be scaled overnight.

I would rate this solution's technical support a three and a half out of five. 

Neutral

The initial setup is complex due to the handling of identity and access management. If you have the expertise and if you are trained well, then it is not difficult. Deployment takes between three and twelve months.

This is an expensive solution. I would rate it a two and a half out of five for pricing. 

I would recommend Sailpoint to others. 

I would rate this solution a ten out of ten.

We primarily use the solution to manage the identity governance, from creating the IDs and their accesses to managing and revoking them. 

An issue needing improvement is that the solution is heavily focused on one's identity, while there has been a move to providing identity as a security service. While it provides these services, the solution can still not do the identity management for the cloud. As such, the security feature can be improved.

Essentially, it manages and helps to create all the IDs and to manage the identities and accesses. What it doesn't do is provide notice in the event of a vulnerability or offense from the security. That's where tools like CyberArk or Netskope, which are more CASB tools, come into play.

I can think of no additional features needing improvement. 

I do not personally deal with SailPoint IdentityIQ but, as a security consultant, discuss with the customer its purchase. I have been doing so for three years.

The solution is pretty stable and simple to use.

The solution is scalable. 

I have not had experience with technical support.

The installation consists of two parts, the one for coming up with the rules, for which we go to the input, the other for providing some assistance in the creation of the rules and accesses. Once that part is done, the tooling part is pretty simple.

The installation is straightforward. 

I do not recall how long it took. 

The solution can be deployed both on-cloud and on-premises?

It's pretty stable and simple to use.

I have recommended the solution to three customers who have opted for it.

I would recommend this solution to others. 

From the perspective of its performance I would rate SailPoint IdentityIQ as a nine out of ten, in light of its identity governance. 

• Certification
• Full Life Cycle management of IT system accounts

• It has, for the first time, consolidated a single view of a user's access to the company's multiple IT systems
• This has now allowed us to confidently cleanup a large proportion of accounts that could not previously have been easily identified as no longer required
• Furthermore, it has forced ownership of non-user/non-individual accounts and accountability of them

• Reporting and some GUI aspects. Reporting lacks the flexibility of retrieving the vast amount of data that we know is in the database, but not easily accessible
• Scheduling also comes short, specifically when it comes to multiple jobs that are interdependent (e.g. preventing certain groups of jobs from running concurrently)

Five years across different companies.

Yes - Some application connectors (namely Lotus Notes) - have some fundamental flaws. But the major issue was cleaning up, what we expected to be, authoritative data - specifically HR data, and users not in HR (eg. contractors, etc) and ensuring global consistency and adherence to standards.

Not of the core product, but some issues with some of the connectors (especially Lotus Notes, and ServiceNow). This has led to some issues with daily batch jobs which either time out, hang, or are terminated and this has in turn, we suspect, created some internal DB link corruptions.

Not yet. Though current nightly batch jobs range from completing within 8 hours to 48 hours, with no obvious reasons as to why

Very good.

Very good.

Yes we did. We switched because the solution no longer offered support as it was sold to Sailpoint.

It was complex. Identity and account management is very heavily dependent on the accuracy, authority, and timing of the source data. As the implementation progressed, we became aware more and more that some of the missing detail (especially around the exceptions of when a central unique Employee number is actually "central" or consistent, or the complexity of some of the attributes - e.g. whether their validity is date dependent, allowing for multiple values, etc) will cause issues in the proposed processes and the timing of providing access when required.

We used a vendor whose level of expertise was excellent.

No ROI as of yet.

It was two years give or take.

Yes - NetIQ, Oracle, and SAP.

Spend double the time/money up front in fully understanding your business requirements, opportunities for process changes. Also ensure you get a detailed understanding of identity and access business processes and understand your HR (and other authoritative) data source.