Use this API to implement Auth Profile functionality.
With this functionality in place, users can read authentication profiles and make changes to them.
An authentication profile represents an identity profile's authentication configuration.
When the identity profile is created, its authentication profile is also created.
An authentication profile includes information like its authentication profile type (`BLOCK`, `MFA`, `NON_PTA`, PTA`) and settings controlling whether or not it blocks access from off network or untrusted geographies.
:::warning experimental
This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true to use this endpoint.
:::
:::tip setting x-sailpoint-experimental header
on the configuration object you can set the x-sailpoint-experimental header to `true' to enable all experimantl endpoints within the SDK.
Example:
Client Error - Returned if the request body is invalid.
ErrorResponseDto
-
401
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
ListAccessProfiles401Response
-
403
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
ErrorResponseDto
-
404
Not Found - returned if the request URL refers to a resource or object that does not exist
ErrorResponseDto
-
429
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
ListAccessProfiles429Response
-
500
Internal Server Error - Returned if there is an unexpected error.
ErrorResponseDto
-
HTTP request headers
Content-Type: Not defined
Accept: application/json
Example
fromsailpoint.v2025.api.auth_profile_apiimportAuthProfileApifromsailpoint.v2025.api_clientimportApiClientfromsailpoint.v2025.models.auth_profileimportAuthProfilefromsailpoint.configurationimportConfigurationconfiguration=Configuration()configuration.experimental=TruewithApiClient(configuration)asapi_client:x_sail_point_experimental='true'# str | Use this header to enable this experimental API. (default to 'true') # str | Use this header to enable this experimental API. (default to 'true')id='2c91808a7813090a017814121919ecca'# str | ID of the Auth Profile to patch. # str | ID of the Auth Profile to patch.try:# Get Auth Profileresults=AuthProfileApi(api_client).get_profile_config(x_sail_point_experimental=x_sail_point_experimental,id=id)# Below is a request that includes all optional parameters# results = AuthProfileApi(api_client).get_profile_config(x_sail_point_experimental, id)print("The response of AuthProfileApi->get_profile_config:\n")print(results.model_dump_json(by_alias=True,indent=4))exceptExceptionase:print("Exception when calling AuthProfileApi->get_profile_config: %s\n"%e)
:::warning experimental
This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true to use this endpoint.
:::
:::tip setting x-sailpoint-experimental header
on the configuration object you can set the x-sailpoint-experimental header to `true' to enable all experimantl endpoints within the SDK.
Example:
Client Error - Returned if the request body is invalid.
ErrorResponseDto
-
401
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
ListAccessProfiles401Response
-
403
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
ErrorResponseDto
-
429
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
ListAccessProfiles429Response
-
500
Internal Server Error - Returned if there is an unexpected error.
ErrorResponseDto
-
HTTP request headers
Content-Type: Not defined
Accept: application/json
Example
fromsailpoint.v2025.api.auth_profile_apiimportAuthProfileApifromsailpoint.v2025.api_clientimportApiClientfromsailpoint.v2025.models.auth_profile_summaryimportAuthProfileSummaryfromsailpoint.configurationimportConfigurationconfiguration=Configuration()configuration.experimental=TruewithApiClient(configuration)asapi_client:x_sail_point_experimental='true'# str | Use this header to enable this experimental API. (default to 'true') # str | Use this header to enable this experimental API. (default to 'true')try:# Get list of Auth Profilesresults=AuthProfileApi(api_client).get_profile_config_list(x_sail_point_experimental=x_sail_point_experimental)# Below is a request that includes all optional parameters# results = AuthProfileApi(api_client).get_profile_config_list(x_sail_point_experimental)print("The response of AuthProfileApi->get_profile_config_list:\n")foriteminresults:print(item.model_dump_json(by_alias=True,indent=4))exceptExceptionase:print("Exception when calling AuthProfileApi->get_profile_config_list: %s\n"%e)
:::warning experimental
This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true to use this endpoint.
:::
:::tip setting x-sailpoint-experimental header
on the configuration object you can set the x-sailpoint-experimental header to `true' to enable all experimantl endpoints within the SDK.
Example:
:::
Patch a specified Auth Profile
This API updates an existing Auth Profile. The following fields are patchable:
offNetwork, untrustedGeography, applicationId, applicationName, type
Client Error - Returned if the request body is invalid.
ErrorResponseDto
-
401
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
ListAccessProfiles401Response
-
403
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
ErrorResponseDto
-
429
Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.
ListAccessProfiles429Response
-
500
Internal Server Error - Returned if there is an unexpected error.
ErrorResponseDto
-
HTTP request headers
Content-Type: application/json-patch+json
Accept: application/json
Example
fromsailpoint.v2025.api.auth_profile_apiimportAuthProfileApifromsailpoint.v2025.api_clientimportApiClientfromsailpoint.v2025.models.auth_profileimportAuthProfilefromsailpoint.v2025.models.json_patch_operationimportJsonPatchOperationfromsailpoint.configurationimportConfigurationconfiguration=Configuration()configuration.experimental=TruewithApiClient(configuration)asapi_client:id='2c91808a7813090a017814121919ecca'# str | ID of the Auth Profile to patch. # str | ID of the Auth Profile to patch.x_sail_point_experimental='true'# str | Use this header to enable this experimental API. (default to 'true') # str | Use this header to enable this experimental API. (default to 'true')json_patch_operation='''[sailpoint.v2025.JsonPatchOperation()]'''# List[JsonPatchOperation] | try:# Patch a specified Auth Profilenew_json_patch_operation=JsonPatchOperation.from_json(json_patch_operation)results=AuthProfileApi(api_client).patch_profile_config(id=id,x_sail_point_experimental=x_sail_point_experimental,json_patch_operation=new_json_patch_operation)# Below is a request that includes all optional parameters# results = AuthProfileApi(api_client).patch_profile_config(id, x_sail_point_experimental, new_json_patch_operation)print("The response of AuthProfileApi->patch_profile_config:\n")print(results.model_dump_json(by_alias=True,indent=4))exceptExceptionase:print("Exception when calling AuthProfileApi->patch_profile_config: %s\n"%e)
