Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

SailPoint: ISC Community Toolbox

Sailpoint
07/03/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


my session I did earlier on the UI development kit, you'll definitely want to look at that because this is just a continuation of what I showed there, and this is just a very quick demo that's going to give you an idea of some things that could be built with the UI development kit, and what I'm going to show you today is the community toolbox. This is something that we hope to grow bigger and bigger, it's a little bit of a preview, so this thing is very much in beta, but what we hope to make this into is kind of an extension of the product that allows you to get some of those features that maybe is not a part of the product today, could be in the future, a little bit of an in-between, so that you can kind of get started on doing some extra customization or extra admin kind of activities in your tenant. So with that, let's look at what I've got here on my screen and we'll get started. So I have our GitHub repository open here, if you just go to github.com slash sale point OSS, that'll take you here, and you just need to search for the community toolbox. And there it is, it's a public open source repository, it's built off of the UI development kit, you can see it's actually generated from the UI development kit here, and you can see the code, and then also of course we've got some releases. So if you look at these releases, you'll be able to find a built executable that you can run on your machine. So this is kind of ready built, kind of ready to go, like I said it's very much in beta, so we don't have everything kind of fleshed out as far as a full release with certificates and everything, but you can run this if you want to play around with it a little bit. I would definitely look forward to this having some more fleshed out features in the future, but at that point you can just download this and run it on your computer. I already have it running right here, when you open it up, this is exactly what you're going to see. It kind of has some nice links in the home page here, this doesn't really do anything, these are already available to you functionality, but it's kind of handy to have these links right here on the front screen, if I click on this one for instance, of course it's going to open all these windows on the other side of my screen, so I've got to drag them over, but you can see the Identity Now status, which that should actually identify security cloud, but we'll get that changed for sure. And again, this can be nice to see if you're having issues, you come right into this front page and you can see some status issues. There's a bunch of other links on here as well. Some of these are just helpful links to get you started on different things, like for instance this one is this user level matrix, it just is a really nice handy way to see what different user levels can access inside of your tenant. Let's see, another good one can be this scope of SaaS support, hey, when do I need expert services? Some of these documents are kind of hard to find, and now there's just nice links going in, there's just bookmarks really though, so nothing crazy there, and these are links that are going to go directly into your tenant itself. So nothing too crazy here on the front page, but just nice to show, and again, because it's open source, what do you find as you use Identity Security Cloud, what do you find useful? Put it here, make a pull request, and it'll probably show up. On the left, there's a bunch of different sections that you can go into. I'll just briefly go into the sources page, and again, this kind of highlights what the capabilities of the UI development kit have, but also showing how we can build some reports and everything that everyone can get value from. Nothing too crazy here, it's just showing sources again, just like you're familiar with inside of the normal client, but if I click the view button, I can immediately get the JSON object representation of the source. A lot of times there's details in here that you may need, and this is just a little bit easier to get to than, say, using Postman or having to inspect the actual data coming back when you're in the browser. So it's nice to have this available to you if there's some specific piece of information that you need, then you can get it right out of here real quickly. You can actually also open it and get some additional details, it gives you some information about the most recent aggregation. Most of this is nothing crazy compared to what's already in the client, but again, I'm going to show you some more stuff, you'll see it in a little bit. Go back to home, and again, similar kind of situation with identities, got a list of identities here, you can view any of those identities, and once again, get the actual JSON representation of those identities, so just a nice handy feature. Here you can also see pagination implemented, the filtering is also implemented, so you can kind of play around with that, and this is another kind of way that you can start to understand how you can implement more difficult things in the UI development kit. So the other way that this can be helpful is if you're building something in the development kit, and you're like, boy, how would I do pagination, or how would I implement that? You can go back to this, and since it's open source, you can see exactly how it's implemented here and then use that logic over in whatever you might be building. But now, I'm going to go into the report sections. This is kind of the cooler part of this app, and hopefully where you'll start to see more of this value, because where this app came from, it kind of grew out of the need for like a health check kind of application, and customers kind of saying, hey, these are the different things that we look at in our client to understand how well things are working. And so we got some ideas from them, and we implemented them in these reports, and I'm sure that a lot of you have other ideas that you might like to see on here. I'd love to hear about them and see you maybe even implement them on here. That would be awesome. But for now, I'll just show you the ones that we have. I'll walk through them so you can get familiar with what's there right now. This one right here is quite useful, source account create error. I love this one, actually, because a lot of times your source will come up, it'll show as healthy, because everything is connecting and communicating properly, but there could be a lot of errors still happening in that source that you're not really aware of unless you go to the events table and you start drilling into those sections. What this does is it shows source accounts that have failed to create, and it also gives you the count next to each one. So this is kind of like the unique count that this user did not get created on this particular source. And then it gives you also details of that last exception. And this can be really helpful, because sometimes you just have a couple of errors, and that's usually not a big deal, because maybe it'll recover later on. But sometimes you have hundreds of errors in here, and this kind of rolls it up and shows you where the big problems are in your space. So again, you can just really quickly see. And sometimes it's something really simple and easy to debug and find. And so when you see this exception, you're like, oh, I know exactly why that's happening, because I can see the exception. It's right there. So they're going to have one really helpful report. Hopefully you'll find that helpful as well. The next one are inactive identities with access. So again, another kind of useful report. If you have identities that are sitting out there that are inactive, they should be inactive, but they still have access in external sources. So this just highlights those right away. You can immediately see those identities. You can see the details, what source they have access on. In this case, yeah, it's got more than one source that they have access to. And then you can, again, look and get the details of this and decide what kind of action you need to take on this particular identity. So another helpful report, I think. And again, these came from customer use cases, so I imagine that more of you will find these kinds of reports as actually pretty useful. Here's one where these are identities that are missing the cloud lifecycle state attributes. So everyone should have that. And here are some that don't. So what are we going to do about them? What I'd love to see is, how do we fix these issues sometimes? Sometimes you might have ideas of how to fix them, and then you could actually build some more actionable reports here too, which would be really nice to see. Here's another one. This is another helpful one. Obviously, this information's already there in Identity Security Cloud, but in this view, it kind of collapses everything based on the configured owners. So just another way to see, you can really, at a glance, kind of see, okay, these are all of our source owners, and this is correct. And then if you see one on here that seems suspicious, you're like, I don't understand why this person's owning sources. Then you can go down and you can see the sources that are on here, and again, get the details of that source, what source that particular person owns, and maybe find some configuration issues in your tenant that you weren't aware of. So it just kind of highlights those things that you might not see normally, because you've got hundreds of sources, and each of those sources are owned by different source owners, and now you can just see them kind of at a glance, right in one page. And then the last one, this just kind of shows, this is kind of like a health of the sources as well, different aggregation events that have happened across the sources. And hopefully this loads, yeah, and you kind of see when they happened, when they last occurred. And again, just kind of a nice view. And there's a lot of different views that we could still continue to create in here. Like I said, these are just a few reports. I'm sure there are many more reports that could be built that could add a lot more functionality. And then the last thing, this is kind of an ad hoc way to call out from our APIs themselves. So here's like the first one that pops up, access profiles. I can immediately call this and get a JSON response from it. And it's very similar to Postman. It really is just like Postman. I don't necessarily see this as being like something that would replace Postman, but in times maybe you're already in this console, it can be nice to just be able to come to the screen and make a couple of calls and get the job done with them. So it's easy to use and you can see, like for instance, I can do V3 and I can see all the different API calls that are available to me in the V3 space. So like sources, and I can just get sources. And there's all my sources available to me right here. And it has this nice JSON viewer, so you can collapse them a little bit easier than maybe you would in Postman. It's nothing too crazy. I don't expect this to become anything big, but maybe it could. It's also just like what you see right here, like I said, it's very much a beta state. And it also hopefully gets some wheels turning. Maybe some of you out there see this and you're like, oh, I can see how this could turn into something that'd be really useful for me. So the goal of this again was just to show you what we've built so far and hopefully get you excited for what we're going to build in the very near future. So this is just what we've started with. Obviously, the DevRel team, we have a lot of different things going on at the same time. But this is one thing that based on how the community feels about this and the different feedback that we get, maybe we go further with this, maybe we spend our time working out other things too, or maybe we allow the community kind of build onto this themselves. So we wanted to get something started, though, and see what happens. This is just, like it says, it's the community toolbox. So it is a toolbox of helpful things that might allow you to take what you could do in the UI a little bit further through this auxiliary UI, and it's something that can be easily run and installed on a local machine. Hope you all enjoyed that. And I look forward to seeing you in the next sessions. Thanks.

TL;DR

  • The ISC Community Toolbox is an open-source application built on SailPoint's UI Development Kit that extends Identity Security Cloud with additional administrative capabilities and health check reports
  • Key features include aggregated error reporting for source account creation failures, identification of inactive identities with lingering access, and consolidated views of source ownership and configuration
  • The tool is available as a beta release on GitHub and includes an API explorer for ad hoc testing, with the development team encouraging community contributions and feature requests
  • Reports surface operational issues that may not be visible in the standard interface, such as provisioning errors on sources that appear healthy and identities missing required lifecycle attributes

Community Toolbox Overview and Architecture

The ISC Community Toolbox is an open-source extension built on SailPoint's UI Development Kit, designed to provide administrators with enhanced capabilities beyond the standard Identity Security Cloud interface. Available as a downloadable executable from the SailPoint OSS GitHub repository, the toolbox operates as a local application that connects to your tenant. The tool is currently in beta and represents a community-driven approach to extending product functionality, with the development team actively seeking contributions and feature requests from users. The application provides quick access to essential resources through a centralized dashboard, including links to Identity Security Cloud status pages, user level matrices, and scope of support documentation that are often difficult to locate through standard navigation.

Health Check Reports and Operational Insights

The toolbox's reporting capabilities emerged from customer requests for better health check functionality and operational visibility. Key reports include source account creation error tracking, which aggregates failed account provisioning attempts by source and displays error counts with exception details—surfacing issues that might otherwise remain hidden despite sources appearing healthy. Additional reports identify inactive identities that retain access to external sources, flag identities missing required cloud lifecycle state attributes, and provide consolidated views of source ownership across the tenant. These reports transform scattered operational data into actionable insights, enabling administrators to quickly identify configuration issues, security risks, and system health problems that would typically require manual investigation across multiple interfaces.

Chapters

0:00 - Introduction and Context
1:14 - GitHub Repository and Installation
2:18 - Home Page and Quick Links
4:02 - Sources and Identities Views
6:12 - Health Check Reports Overview
6:59 - Source Account Creation Errors
8:15 - Inactive Identities and Missing Attributes
9:27 - Source Ownership and Aggregation Reports
11:00 - API Explorer Feature
12:04 - Future Direction and Community Involvement

Key Quotes

0:49 "This is something that we hope to grow bigger and bigger, it's a little bit of a preview, so this thing is very much in beta, but what we hope to make this into is kind of an extension of the product that allows you to get some of those features that maybe is not a part of the product today, could be in the future, a little bit of an in-between ..."
7:07 "I love this one, actually, because a lot of times your source will come up, it'll show as healthy, because everything is connecting and communicating properly, but there could be a lot of errors still happening in that source that you're not really aware of unless you go to the events table and you start drilling into those sections ..."
6:26 "Where this app came from, it kind of grew out of the need for like a health check kind of application, and customers kind of saying, hey, these are the different things that we look at in our client to understand how well things are working ..."
12:52 "This is one thing that based on how the community feels about this and the different feedback that we get, maybe we go further with this, maybe we spend our time working out other things too, or maybe we allow the community kind of build onto this themselves ..."

FAQ

How do I install and run the ISC Community Toolbox?

Navigate to github.com/sailpoint-oss and search for 'community toolbox' to find the repository. Download the pre-built executable from the releases section and run it locally on your machine. The tool is currently in beta without full certificate signing, but is functional for testing and evaluation.

What types of operational issues can the toolbox help identify?

The toolbox surfaces several critical issues including source account creation failures with error details and counts, inactive identities that still have access to external sources, identities missing cloud lifecycle state attributes, and potential source ownership configuration problems. These issues may not be immediately visible in the standard Identity Security Cloud interface.


Categories:
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Identity & Access
  • Demo
  • Technical Deep Dive
  • Best Practices
  • Getting Started
  • Identity Security Cloud Administration
  • UI Development Kit
  • Open Source Tooling
  • Health Check Reporting
  • Source Account Provisioning
  • Identity Lifecycle Management
  • API Integration
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: SailPoint: ISC Community Toolbox

              Upcoming Webinar Calendar

              • 07/09/2026
                01:00 PM
                07/09/2026
                The HUMAN Experience: Empowering Agentic Trust in Practice
                https://www.truthinit.com/index.php/channel/2026/the-human-experience-empowering-agentic-trust-in-practice/
              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting an Elite Security Team to Achieve Championship-Level Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-an-elite-security-team-to-achieve-championship-level-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in AI Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-ai-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/21/2026
                01:00 PM
                07/21/2026
                HUMAN Dialogue: Insights from Attackers During the FIFA World Cup
                https://www.truthinit.com/index.php/channel/2029/human-dialogue-insights-from-attackers-during-the-fifa-world-cup/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Mastering the DPDP Framework
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-mastering-the-dpdp-framework/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                09

                The HUMAN Experience: Empowering Agentic Trust in Practice

                07/09/202601:00 PM ET
                • Jul
                  14

                  Crafting an Elite Security Team to Achieve Championship-Level Defense

                  07/14/202601:00 PM ET
                  • Jul
                    14

                    Understanding the Crucial Role of Context in AI Data

                    07/14/202602:00 PM ET
                    • Jul
                      21

                      Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                      07/21/202604:00 AM ET
                      • Jul
                        21

                        HUMAN Dialogue: Insights from Attackers During the FIFA World Cup

                        07/21/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version