Spend Less & Save More with our Exciting End-of-Year offers (BUY 1 GET 1 FREE) | Offer ending in:
D H M S Grab Now

What’s Identity Warehouse and Identity Cube in SailPoint User Interface (Identity IQ)

If you are not aware of who has access to your data and applications, you’re undoubtedly neglecting compliance and security concerns. You can govern accessibility to every document and activity across your complex IT system by individuals, customers, partners, and even machines with IdentityIQ at the core of your organization. SailPoint IdentityIQ can manage complex integrated IT infrastructures and simplify identity management activities throughout the cloud, mobile, and on-premises platforms.

Table of Contents

What is Identity Warehouse in SailPoint?
What is Identity Cube in SailPoint?
Identity level attribute
Application-level attribute

What's Identity Warehouse and Identity Cube in SailPoint User Interface

In this article, we will discuss Identity Warehouse and Identity Cube in SailPointIQ.

What is Identity Warehouse in SailPoint?

In the SailPoint user dashboard, Identity Warehouse is a typical Warehouse where all identities are maintained. When you go to the SailPoint user interface, you will see all the identities there. It is a central place within the SailPoint known as Identity Warehouse; it is one of the significant locations in SailPoint for all identities. In Identity Warehouse, you will see Identity Cube, which could be real or virtual identities. As we already know that whenever someone joins an organization, a virtual identity is created for that particular person in the organization.

Identity Warehouse……..> Identity Cubes……> Real+ virtual identities

Identity Warehouse is a central warehouse for storing all organizational identities. These identities can be service identities or real identity cubes.

  • Service identities: Those accounts unrelated to any real person working in the organization are known as service identities.


  • Real identities: Real identities or virtual identities, where you will find all your real identities, known as Identity cube.

As a result, when you visit the Identity Warehouse, you’ll see a list of everyone who has been onboarded into the Identity Management system.

What is Identity Cube in SailPoint?

Identity Cube in SailPoint gives you a 360-degree overview of access and gives all employee compliance information in any organization. It means you can see what these identities can do in a central place. Identity Cube system integrates all crucial data about a specific individual and its connections to applications and data. In Identity Cube, you will see

Identity cube…….> Real+ virtual identities= 360-degree overview of access+ compliance information
Sailpoint……..> Two types of attributes…….>1. Identity level…..>2. Application-level
  • Attributes

There are two types of generic attribute levels in SailPointIQ:

1. Identity level attribute: Identity levels are the type of attributes that are maintained on the SailPoint level. The scope of these attributes is global in nature, and it is directly defined at the SailPoint level.

2. Application-level attribute: Application-level attribute target applications combined into a single machine, indicating that this application is the only one in SailPoint that everyone in the business can access. This means the scope of the application-level attribute is local to the application.

In identity level attributes, you can see some genric level information like user name, first name, email, manager, department name, and so on listed. Also, you’ll know the application-level identity of all of your target applications that are integrated into a certain device, which tells you that this is the only application in SailPoint that anyone in the organization may access. For example, if an employee of your organization named John decides to leave the organization, then there is no need for you to go through each application to track access. You already have the information about the target application he has an account on and whether access is active or inactive.

  • Entitlements: All of the permissions and functions that identity has in different applications are listed in detail.
  • Applications: All accounts connected with identity in applications are listed in detail.
  • Policy: Identity is on a list of policies that have been violated.
  • History: Identity history in detail typically has a picture of one’s individuality.
  • Risk: Information of the identity risk score.
  • Activity: Different applications or activity access by identity.
  • User Rights: In SailPoint, information regarding the capability of an Identity to perform certain activities.
  • Events: Identity was activated by various situations.

Final Thoughts

SailPoint assists the world’s biggest enterprises in reducing risk, lowering IT expenses, and ensuring compliance. SailPoint IdentityIQ, the organization’s award-winning software, delivers higher visibility and management over user access to critical applications and services while expediting the access permission and product delivery.

InfosecTrain’s SailPoint IdentityIQ-Admin and Developer training course is intended to give you advanced knowledge of the IAM solution through a balance of theoretical and practical learning. Enroll now to discover the expertise needed to maintain and develop SailPoint solutions for your enterprise.


My name is Pooja Rawat. I have done my B.tech in Instrumentation engineering. My hobbies are reading novels and gardening. I like to learn new things and challenges. Currently I am working as a Cyber security Research analyst in Infosectrain.