Data Flow in a IGA System (SailPoint)

The above flow diagram illustrates how data is flown from an authoritative source, for instance, the HR system, to your IGA application (SailPoint IIQ) and any target application, for instance, Active Directory.

For example:

A new user is onboarded in the HR system with the below information:

• Employee ID: E100, First Name: Rahul, Middle Name: Kumar, Last Name: Sharma

SailPoint will fetch this data from the HR system and create user accounts in Active Directory. SailPoint will retrieve the information from the account once it has been successfully created to make sure both systems are in sync.

In some organizations, email addresses are created by your IGA application, so it's important to write back the same information to the HR system.

How to upgrade SailPoint IIQ ?

1.) Download appropriate .war files for upgrade.

2.) Stop Application server:

Command: ./shutdown.sh (Inside Tomcat/Bin directory)

3.) Take a backup of existing database.

4.) Take back up of Installation Directory by compressing it into a zip file.

Command zip -r <FileName>.zip identityiq

Move : mv <FileName>.zip /apps/backup

5.) Also Take backup of following files:

·                  WEB-INF/classes/iiq.properties

·                  WEB-INF/classes/sailpoint/object/*

·                  JDBC drivers from WEB-INF/lib

Command : cp * /apps/backup

6.) On the machine where IIQ is installed, delete all from webapps/identityiq directory. This step is important, some IIQ upgrade will cause existing files to deprecate (Compatibility issue)

Command: rm -r -f *

7.) Navigate back one directory level to /webapps. Remove the existing identityiq.war file 

Command : rm identityiq.war

8.)      Move Identityiq.war file downloaded in step 1 and place it inside webapps/identityiq

9.)      Unzip the war file

Command : jar -xvf identityiq.war

10.)    Copy back files taken backup in step 5 to there respective folders.

11.)    Move the identityiq.war file up one directory to /webapps

Command : mv identityiq.war ..

12.)    Navigate to database directory /webapps/identityiq/WEB-INF/database 

Execute upgrade_identityiq_tables.mysql in New Query.

13.)    Navigate to /WEB-INF/bin

Command : chmod 777 iiq

./iiq  upgrade

14.)    Start Tomcat using 

Command ./startup.sh

Note: While moving from 7.3 to 8.0 Version update iiq.properties file 

dataSource.maxWait to dataSource.maxWaitMillis

 

(Follow iiq upgrade document from SailPint compass)

How to install SailPoint IIQ ?

 SailPoint IIQ Installation steps:

1) Create a temporary folder called SailPointIIQ in C Drive.

2)  Copy identityiq.war file to C:/SailPointIIQ.

3)  Create identityiq folder in webapps location in Apache tomcat.

4) Copy the .war file to identityiq folder in webapps.

5) Unzip the .war file using following command.

command: jar -xvf idenityiq.war

6) Following are the files that will get extracted from war file.

In my case I am using mysql so I am using create_identityiq_tables-8.2.mysql 

path: C:\Program Files\Apache Software Foundation\Tomcat 9.0\webapps\identityiq\WEB-INF\database

7) Go to MySQL workbench and run the file.

8) After running this file database schema with name identityiq and identityiqplugin will be created.

9.) Database connection information need to modified in iiq.properties file which is located inside path C:\Program Files\Apache Software Foundation\Tomcat 9.0\webapps\identityiq\WEB-INF\classes

10.) Update hostname and port details in iiq.properties file.

11) To configure IQ run the following command and import init.xml

12)  Status after import.

13) Start Apache Tomcat server.

14) Navigate to http://localhost:8080/identityiq/

(Follow iiq installation document from SailPint compass)