Instrumental Identity

12/10/2024

As social engineering attacks rise, organizations—especially those with a hybrid/remote workforce—are facing challenges in verifying identities and securing accounts.

At Instrumental Identity, we've helped numerous organizations, particularly in higher education, mitigate these risks. Traditional Knowledge-Based ID verification methods (e.g., DOB, address) are no longer sufficient, as this info is easily accessible online.

We recommend stronger methods such as:
- Multi-factor authentication (DUO, Okta)
- One-time passwords via verified email/phone
- Third-party photo ID verification (without storing data)
- Dynamic knowledge-based questions (e.g., professor’s last name, course enrollment details)

Through our SailPoint IdentityIQ Plugin, we integrate these features to ensure support staff can confidently assist users. We’ve also introduced workflows to flag suspicious activities and require further ID proofing for added security.

Feedback from the end-user is tracked and visible within the SailPoint UI, ensuring accountability and safety at every step.

11/07/2024

What Sets the History Plugin for IdentityIQ Apart from Access History?

The History Plugin and Access History both track identity and role changes, but they cater to different needs.
🔹 Focus & Data Integration
Access History focuses on changes to roles, entitlements, and capabilities. In contrast, the History Plugin integrates data from all IIQ sources and its own change detection—even allowing customers to "bring their own" audit event data for deeper insights.
🔹 Maintenance & Updates
Access History changes require a patch or version upgrade (such as the coming improvements in IIQ 8.5). The History Plugin is continuously updated and supports IIQ versions from 7.2 to the latest. Upgrade whenever you're ready!
🔹 Scan Triggers
Both tools scan for changes to identities and accounts. The History Plugin offers flexible scan options (scheduled tasks or background service), whereas Access History uses a fixed job start date for all changes.
🔹 Storage & Reporting
The History Plugin stores events as IIQ Audit Events, making them easy to access and analyze with SQL queries, while Access History uses JSON format, which can be more challenging to work with for attribute-level changes.
🔹 User Interface
The History Plugin’s compact UI allows for quicker access to key data with a customizable timeline, while Access History’s UI requires more scrolling and screen space.

Want to dive deeper? Check out this blog by Devin Rosenbauer on the History Plugin: https://www.instrumentalidentity.com/2024/11/05/history-plugin-and-84-access-history/

09/25/2024

We are very excited to announce that Instrumental Identity will be in attendance at in San Antonio, Texas from October 21-24. If you see either Thomas Austin or Paul Hodgdon, feel free to ask about our products and services.

09/24/2024

We are excited to announce that Instrumental Identity will be in attendance at in Orlando, Florida from October 21-24! If you see us, feel free to stop and ask about our SailPoint products and services.

We are also doing a giveaway for those interested in a FREE portable monitor!

09/13/2024

Still using SailPoint Accelerator Pack or struggling with attribute sync? Check out our solution to solve all your problems! The Instrumental Identity Harmonizer

Our Harmonizer module builds upon SailPoint IdentityIQ's native capabilities and Instrumental Identity's decade of IIQ experience to provide top-tier Attribute Synchronization to all of your provisioning targets.

08/27/2024

Check out our newest release of the UI Enhancer Plugin which makes IdentityIQ more intuitive, versatile, and powerful!

Our plugin makes IdentityIQ more intuitive secure versatile powerful The SailPoint IdentityIQ user interface is far more user-friendly and reliable than the interface of competing identity management products, however from time to time, it still encounters limitations. Instrumental Identity has crea...

08/07/2024

We're excited to share a recent case study in which the University of Pennsylvania implemented a custom matching solution in SailPoint IdentityIQ with the help of Instrumental Identity.

Discover how the University of Pennsylvania successfully implemented a custom identity governance and administration solution.

01/11/2024

Instrumental Identity is excited to announce our new storefront with Carahsoft. SailPoint IdentityIQ customers who are interested in purchasing our UI plugin or Audit History plugin may now do so at: https://www.carahsoft.com/instrumental-identity. For any sales related questions feel free to call us at 1-833-IDM-HELP or email [email protected].

10/06/2023

Learn about how Identity Works LLC has developed CI/CD tools and processes for IdentityIQ and IdentityNow. Get features such as automated testing, automated deployments and code/syntax validation.

With Navigate around the corner, we felt now would be an opportune time to share our journey and experiences in implementing robust DevOps processes within our clients’ diverse environments.

04/28/2023

Did you know Identity Works LLC has a vast portfolio of custom developed plugins. Check our our IIQ Query Plugin which allows you to query data directly from your IIQ database for reporting. Ever wanted to test a SailPoint filter or HQL query before you used it in a role membership rule? Have you ever wondered why your IIQ Filters behave the way they do? Have you ever needed a Filter String when you have a CompositeFilter XML, or vice versa?

https://www.identityworksllc.com/plugins/query-plugin

We also do custom plugin development work, feel free to reach out.

IdentityWorks has created a Query Plugin for SailPoint, implementing a SQL, HQL, and Filter query interface directly in the browser

04/20/2023

IdentityWorksLLC has created a custom SailPoint IIQ plugin that adds useful features to the user interface. This article illustrates many of the features available with this Plugin.