SailPoint: MCP (Model Context Protocol) Server update

SailPoint has just introduced the MCP (Model Context Protocol) Server, and this could be a game changer for how we handle access requests. In short, the MCP Server acts as a standardised bridge between AI applications and SailPoint’s Identity Security Cloud (ISC). Instead of needing heavy custom integration or multiple request centers, it gives you a ready-made interface to connect AI tools directly into SailPoint. That means access requests can finally become as simple as asking an assistant in plain language, without dropping enterprise security standards.

Read more

SailPoint: A new capability in Identity Security Cloud

SailPoint has introduced a new capability in Identity Security Cloud: the option to automatically delete accounts when an identity is terminated

Why This Matters

• Many customers need more than just disabling accounts
• Until now, this required custom rules (BeforeProvisioning), which slowed projects and added overhead

What Has Changed

• Admins can now configure Lifecycle States to delete accounts (not just enable/disable)
• All deletes are audited, so you know who did what, when, and on which system
• For disconnected systems, SailPoint creates a manual task and sends a notification

Timelines

• Sandbox rollout: Sept 15, 2025
• Production rollout: Week of Sept 22, 2025

Full details available here

SailPoint Identity Security Cloud – New Updates

Key Highlights from this latest release:

• BeyondTrust Password Safe On-Premise Integration: Identity Security Cloud now supports the BeyondTrust Password Safe (On-Premise) credential provider for Secrets Management. This enables credential cycling directly from BeyondTrust, providing stronger security and streamlined password management

• Workflows – Execution Playback: 
  A new execution playback feature has been introduced for Workflows. Administrators can now “playback” workflow execution logs in the same format as Test Workflow, viewing input/output data step by step. Even if the workflow has been modified since execution, playback restores the original configuration for accurate review and troubleshooting

For the full release notes, visit: https://community.sailpoint.com/t5/SaaS-Release-Notes/tkb-p/saas-release-notes

SailPoint: Identity Security Cloud Production release notes

Product and Feature enchacements:

Machine Identity Security:

• Users can now opt out of the Machine Account Discovery feature by disabling it on the System Features page.

Connectivity – Jack Henry:

• The Jack Henry connector now supports Symitar 2024.

Connectivity – Snowflake:

• The Snowflake Connector can now aggregate database roles as entitlements. It can also assign and revoke database roles at the account level.

Identity Security Cloud – Core Access Model:

• Standard criteria for role assignments have been enhanced as follows to provide an improved administrative experience and greater flexibility in assigning roles:
  • A Does Not Contain operator has been added for Identity and Account attribute expressions.
  • The ability to compare against a list of values in a single criteria statement has been added. For example, you could evaluate if a user’s department is EQUAL to Accounting, Finance, or Accounts Payable in a single statement.
  • The >, >=, <, and <= numeric operations have been added to account attribute expressions.
  • Issues with boolean comparisons evaluating null values as FALSE have been resolved.

Read more