SailPointIdentityNow

1.0.7

scripts/New-IdentityNowProfile.ps1

                                function New-IdentityNowProfile {

    <#

.SYNOPSIS

Create new IdentityNow Identity Profile(s).

.DESCRIPTION

Create new IdentityNow Identity Profile(s).

.PARAMETER Name

The Name of the new IdentityNow Identity Profile.

.PARAMETER SourceID

The ID of the Source tied to the new IdentityNow Identity Profile.

.EXAMPLE

New-IdentityNowProfile -Name Contractors -SourceID 116329

.LINK

http://darrenjrobinson.com/sailpoint-identitynow

#>

    [cmdletbinding()]

    param(

        [Parameter(Mandatory = $true, ValueFromPipeline = $true)]

        [string]$Name,

        [Parameter(Mandatory = $true, ValueFromPipeline = $true)]

        [int]$SourceID

    )

    # IdentityNow Admin User

    $adminUSR = [string]$IdentityNowConfiguration.AdminCredential.UserName.ToLower()

    $adminPWDClear = [System.Runtime.InteropServices.marshal]::PtrToStringAuto([System.Runtime.InteropServices.marshal]::SecureStringToBSTR($IdentityNowConfiguration.AdminCredential.Password))

    # Generate the account hash

    $hashUser = Get-HashString $adminUSR.ToLower()

    $adminPWD = Get-HashString "$($adminPWDClear)$($hashUser)"

    $clientSecretv3 = [System.Runtime.InteropServices.marshal]::PtrToStringAuto([System.Runtime.InteropServices.marshal]::SecureStringToBSTR($IdentityNowConfiguration.v3.Password))

    # Basic Auth

    $Bytesv3 = [System.Text.Encoding]::utf8.GetBytes("$($IdentityNowConfiguration.v3.UserName):$($clientSecretv3)")

    $encodedAuthv3 = [Convert]::ToBase64String($Bytesv3)

    $Headersv3 = @{Authorization = "Basic $($encodedAuthv3)" }

    # Get v3 oAuth Token

    # oAuth URI

    $oAuthURI = "https://$($IdentityNowConfiguration.orgName).api.identitynow.com/oauth/token"

    $v3Token = Invoke-RestMethod -Method Post -Uri "$($oAuthURI)?grant_type=password&username=$($adminUSR)&password=$($adminPWD)" -Headers $Headersv3 

    if ($v3Token.access_token) {

        try {

            $body="name=$Name&sourceId=$SourceID"

            $IDNProfile = Invoke-RestMethod -Method Post -Uri "https://$($IdentityNowConfiguration.orgName).api.identitynow.com/cc/api/profile/create" -Headers @{Authorization = "$($v3Token.token_type) $($v3Token.access_token)" } -Body $body

            return $IDNProfile

        }

        catch {

            Write-Error "Problem Creating Profile. $($_)" 

        }

    }

    else {

        Write-Error "Authentication Failed. Check your AdminCredential and v3 API ClientID and ClientSecret. $($_)"

        return $v3Token

    } 

}