Schema | SailPoint MCP Server

Server Configuration

Describes the environment variables required to run the server.

Name	Required	Description
`SAILPOINT_BASE_URL`	Yes	The base URL of your SailPoint Identity Security Cloud tenant API (e.g., https://your-tenant.api.identitynow.com)
`SAILPOINT_CLIENT_ID`	Yes	The Client ID generated from SailPoint Personal Access Tokens
`SAILPOINT_CLIENT_SECRET`	Yes	The Client Secret generated from SailPoint Personal Access Tokens

Capabilities

Features and capabilities supported by this server

Capability	Details
`tools`	{}

Tools

Functions exposed to the LLM to take actions

Name	Description
list_identities	List identities in SailPoint with optional filtering. Returns identity ID, name, email, lifecycle state, and manager information.
get_identity	Get detailed information about a specific identity by ID, including attributes, accounts, and access.
list_accounts	List accounts across all sources with filtering options. Returns account ID, name, source, identity owner, and status.
get_account	Get detailed information about a specific account including attributes and entitlements.
get_account_entitlements	List entitlements assigned to a specific account.
enable_account	Enable a disabled account.
disable_account	Disable an active account.
unlock_account	Unlock a locked account.
list_access_profiles	List access profiles with optional filtering. Access profiles bundle entitlements for role-based access.
get_access_profile	Get detailed information about a specific access profile including entitlements.
create_access_profile	Create a new access profile.
list_roles	List roles with optional filtering. Roles bundle access profiles and entitlements for business functions.
get_role	Get detailed information about a specific role including access profiles and memberships.
get_role_assigned_identities	List identities assigned to a specific role.
create_role	Create a new role.
list_certifications	List active certification reviews. Certifications are access review campaigns.
get_certification	Get detailed information about a specific certification including items to review.
list_certification_campaigns	List certification campaigns with status and progress.
get_certification_campaign	Get detailed information about a certification campaign including statistics.
list_workflows	List workflows (automation scripts) in the tenant.
get_workflow	Get detailed information about a specific workflow including steps and triggers.
get_workflow_executions	List execution history for a specific workflow.
test_workflow	Test a workflow with sample input.
list_sources	List connected sources (identity repositories). Sources are the systems SailPoint connects to.
get_source	Get detailed information about a specific source including connection status.
search	Perform a search across identities, accounts, access profiles, roles, or entitlements using query syntax.
search_aggregate	Perform aggregate queries on search indices for analytics (counts, groupings, etc.).
list_entitlements	List entitlements (permissions/privileges) across sources.
get_entitlement	Get detailed information about a specific entitlement.
list_access_requests	List access requests with status filtering.
create_access_request	Create a new access request for roles, access profiles, or entitlements.
list_identity_profiles	List identity profiles (configurations for how identities are created/managed).
get_identity_profile	Get detailed information about an identity profile including attribute mappings.
list_sod_policies	List Separation of Duties (SOD) policies for compliance monitoring.
get_sod_policy	Get detailed information about a specific SOD policy.
list_sod_violations	List SOD violations for review and remediation.

Prompts

Interactive templates invoked by user choice

Name	Description
No prompts

Resources

Contextual data attached and managed by the client

Name	Description
No resources

SailPoint MCP Server

Server Configuration

Capabilities

Tools

Prompts

Resources

Latest Blog Posts

MCP directory API