SailPoint
SailPoint is an identity management solution that helps organizations manage employee permissions, digital identities, information security, data access, and compliance. The Sumo Logic app for SailPoint helps you monitor the user events, actions, operations, failed logins, successful logins, and user activities to your applications through SailPoint. This app consists of dashboards that give you visibility into the source deletion, user events, and geo locations of authentication events.
Log types
The SailPoint Source ingests:
- Events from the Search API Endpoint.
- Users Inventory data from the Public Identities API Endpoint.
Sample log messages
{
"org":"sp-ITgrp",
"pod":"stg02-useast1",
"created":"2022-10-05T11:52:42.119Z",
"id":"aa138dc5c4c8dbfdbdb68336ac89730cb9531a0e5bfec876af6630a6f12e4a2e",
"action":"update",
"type":"WORKFLOW",
"actor":"▶"{
"..."
},
"target":"