sailpoint-api-client 1.0.1 → 1.0.3

package/dist/v3/api.d.ts

@@ -68,6 +68,168 @@ export interface AccessAllOf {
      */
     'description'?: string | null;
 }
+/**
+ *
+ * @export
+ * @interface AccessProfile
+ */
+export interface AccessProfile {
+    /**
+     * The ID of the Access Profile
+     * @type {string}
+     * @memberof AccessProfile
+     */
+    'id'?: string;
+    /**
+     * Name of the Access Profile
+     * @type {string}
+     * @memberof AccessProfile
+     */
+    'name': string;
+    /**
+     * Information about the Access Profile
+     * @type {string}
+     * @memberof AccessProfile
+     */
+    'description'?: string | null;
+    /**
+     * Date the Access Profile was created
+     * @type {string}
+     * @memberof AccessProfile
+     */
+    'created'?: string;
+    /**
+     * Date the Access Profile was last modified.
+     * @type {string}
+     * @memberof AccessProfile
+     */
+    'modified'?: string;
+    /**
+     * Whether the Access Profile is enabled. If the Access Profile is enabled then you must include at least one Entitlement.
+     * @type {boolean}
+     * @memberof AccessProfile
+     */
+    'enabled'?: boolean;
+    /**
+     *
+     * @type {OwnerReference}
+     * @memberof AccessProfile
+     */
+    'owner': OwnerReference;
+    /**
+     *
+     * @type {AccessProfileSourceRef}
+     * @memberof AccessProfile
+     */
+    'source': AccessProfileSourceRef;
+    /**
+     * A list of entitlements associated with the Access Profile. If enabled is false this is allowed to be empty otherwise it needs to contain at least one Entitlement.
+     * @type {Array<EntitlementRef>}
+     * @memberof AccessProfile
+     */
+    'entitlements'?: Array<EntitlementRef>;
+    /**
+     * Whether the Access Profile is requestable via access request. Currently, making an Access Profile non-requestable is only supported  for customers enabled with the new Request Center. Otherwise, attempting to create an Access Profile with a value  **false** in this field results in a 400 error.
+     * @type {boolean}
+     * @memberof AccessProfile
+     */
+    'requestable'?: boolean;
+    /**
+     *
+     * @type {Requestability}
+     * @memberof AccessProfile
+     */
+    'accessRequestConfig'?: Requestability;
+    /**
+     *
+     * @type {Revocability}
+     * @memberof AccessProfile
+     */
+    'revocationRequestConfig'?: Revocability;
+    /**
+     * List of IDs of segments, if any, to which this Access Profile is assigned.
+     * @type {Array<string>}
+     * @memberof AccessProfile
+     */
+    'segments'?: Array<string> | null;
+    /**
+     *
+     * @type {ProvisioningCriteriaLevel1}
+     * @memberof AccessProfile
+     */
+    'provisioningCriteria'?: ProvisioningCriteriaLevel1 | null;
+}
+/**
+ *
+ * @export
+ * @interface AccessProfileApprovalScheme
+ */
+export interface AccessProfileApprovalScheme {
+    /**
+     * Describes the individual or group that is responsible for an approval step. Values are as follows. **APP_OWNER**: The owner of the Application  **OWNER**: Owner of the associated Access Profile or Role  **SOURCE_OWNER**: Owner of the Source associated with an Access Profile  **MANAGER**: Manager of the Identity making the request  **GOVERNANCE_GROUP**: A Governance Group, the ID of which is specified by the **approverId** field
+     * @type {string}
+     * @memberof AccessProfileApprovalScheme
+     */
+    'approverType'?: AccessProfileApprovalSchemeApproverTypeEnum;
+    /**
+     * Id of the specific approver, used only when approverType is GOVERNANCE_GROUP
+     * @type {string}
+     * @memberof AccessProfileApprovalScheme
+     */
+    'approverId'?: string | null;
+}
+export declare const AccessProfileApprovalSchemeApproverTypeEnum: {
+    readonly AppOwner: "APP_OWNER";
+    readonly Owner: "OWNER";
+    readonly SourceOwner: "SOURCE_OWNER";
+    readonly Manager: "MANAGER";
+    readonly GovernanceGroup: "GOVERNANCE_GROUP";
+};
+export declare type AccessProfileApprovalSchemeApproverTypeEnum = typeof AccessProfileApprovalSchemeApproverTypeEnum[keyof typeof AccessProfileApprovalSchemeApproverTypeEnum];
+/**
+ *
+ * @export
+ * @interface AccessProfileBulkDeleteRequest
+ */
+export interface AccessProfileBulkDeleteRequest {
+    /**
+     * List of IDs of Access Profiles to be deleted.
+     * @type {Array<string>}
+     * @memberof AccessProfileBulkDeleteRequest
+     */
+    'accessProfileIds'?: Array<string>;
+    /**
+     * If **true**, silently skip over any of the specified Access Profiles if they cannot be deleted because they are in use. If **false**, no deletions will be attempted if any of the Access Profiles are in use.
+     * @type {boolean}
+     * @memberof AccessProfileBulkDeleteRequest
+     */
+    'bestEffortOnly'?: boolean;
+}
+/**
+ *
+ * @export
+ * @interface AccessProfileBulkDeleteResponse
+ */
+export interface AccessProfileBulkDeleteResponse {
+    /**
+     * ID of the task which is executing the bulk deletion. This can be passed to the **_/task-status** API to track status.
+     * @type {string}
+     * @memberof AccessProfileBulkDeleteResponse
+     */
+    'taskId'?: string;
+    /**
+     * List of IDs of Access Profiles which are pending deletion.
+     * @type {Array<string>}
+     * @memberof AccessProfileBulkDeleteResponse
+     */
+    'pending'?: Array<string>;
+    /**
+     * List of usages of Access Profiles targeted for deletion.
+     * @type {Array<AccessProfileUsage>}
+     * @memberof AccessProfileBulkDeleteResponse
+     */
+    'inUse'?: Array<AccessProfileUsage>;
+}
 /**
  * This is more of a complete representation of an access profile.
  * @export
@@ -263,6 +425,35 @@ export interface AccessProfileEntitlement {
      */
     'standalone'?: boolean;
 }
+/**
+ *
+ * @export
+ * @interface AccessProfileRef
+ */
+export interface AccessProfileRef {
+    /**
+     * ID of the Access Profile
+     * @type {string}
+     * @memberof AccessProfileRef
+     */
+    'id'?: string;
+    /**
+     * Type of requested object. This field must be either left null or set to \'ACCESS_PROFILE\' when creating an Access Profile, otherwise a 400 Bad Request error will result.
+     * @type {string}
+     * @memberof AccessProfileRef
+     */
+    'type'?: AccessProfileRefTypeEnum;
+    /**
+     * Human-readable display name of the Access Profile. This field is ignored on input.
+     * @type {string}
+     * @memberof AccessProfileRef
+     */
+    'name'?: string;
+}
+export declare const AccessProfileRefTypeEnum: {
+    readonly AccessProfile: "ACCESS_PROFILE";
+};
+export declare type AccessProfileRefTypeEnum = typeof AccessProfileRefTypeEnum[keyof typeof AccessProfileRefTypeEnum];
 /**
  * Role
  * @export
@@ -318,6 +509,35 @@ export interface AccessProfileRole {
      */
     'revocable'?: boolean;
 }
+/**
+ *
+ * @export
+ * @interface AccessProfileSourceRef
+ */
+export interface AccessProfileSourceRef {
+    /**
+     * The ID of the Source with with which the Access Profile is associated
+     * @type {string}
+     * @memberof AccessProfileSourceRef
+     */
+    'id'?: string;
+    /**
+     * The type of the Source, will always be SOURCE
+     * @type {string}
+     * @memberof AccessProfileSourceRef
+     */
+    'type'?: AccessProfileSourceRefTypeEnum;
+    /**
+     * The display name of the associated Source
+     * @type {string}
+     * @memberof AccessProfileSourceRef
+     */
+    'name'?: string;
+}
+export declare const AccessProfileSourceRefTypeEnum: {
+    readonly Source: "SOURCE";
+};
+export declare type AccessProfileSourceRefTypeEnum = typeof AccessProfileSourceRefTypeEnum[keyof typeof AccessProfileSourceRefTypeEnum];
 /**
  * This is a summary representation of an access profile.
  * @export
@@ -398,6 +618,25 @@ export interface AccessProfileSummaryAllOf {
      */
     'revocable'?: boolean;
 }
+/**
+ *
+ * @export
+ * @interface AccessProfileUsage
+ */
+export interface AccessProfileUsage {
+    /**
+     * ID of the Access Profile that is in use
+     * @type {string}
+     * @memberof AccessProfileUsage
+     */
+    'accessProfileId'?: string;
+    /**
+     * List of references to objects which are using the indicated Access Profile
+     * @type {Array<BaseReferenceDto>}
+     * @memberof AccessProfileUsage
+     */
+    'usedBy'?: Array<BaseReferenceDto>;
+}
 /**
  *
  * @export
@@ -501,7 +740,7 @@ export interface AccessRequestItem {
         [key: string]: string;
     };
     /**
-     * The date the role or access profile is no longer assigned to the specified identity. * Specify a date in the future. * The current SLA for the deprovisioning is 24 hours. * This date can be modified to either extend or decrease the duration of access item assignments for the specified identity. * Currently it is not supported for entitlements.
+     * The date the role or access profile is no longer assigned to the specified identity. * Specify a date in the future. * The current SLA for the deprovisioning is 24 hours. * This date can be modified to either extend or decrease the duration of access item assignments for the specified identity. * Currently it is not supported for entitlements. * If sunset date for role or access profile specified, removeDate cannot be established. This rule doesn\'t apply for entitlements.
      * @type {string}
      * @memberof AccessRequestItem
      */
@@ -569,7 +808,7 @@ export declare const AccessRequestPhasesResultEnum: {
 };
 export declare type AccessRequestPhasesResultEnum = typeof AccessRequestPhasesResultEnum[keyof typeof AccessRequestPhasesResultEnum];
 /**
- * Access request type. Defaults to GRANT_ACCESS. REVOKE_ACCESS type can only have a single Identity ID in the requestedFor field. Currently REVOKE_ACCESS is not supported for entitlements.
+ * Access request type. Defaults to GRANT_ACCESS. REVOKE_ACCESS type can only have a single Identity ID in the requestedFor field.
  * @export
  * @enum {string}
  */
@@ -2356,7 +2595,7 @@ export interface ApprovalComment {
  */
 export interface ApprovalForwardHistory {
     /**
-     * Display name of approver that forwarded the approval.
+     * Display name of approver from whom the approval was forwarded.
      * @type {string}
      * @memberof ApprovalForwardHistory
      */
@@ -2368,17 +2607,29 @@ export interface ApprovalForwardHistory {
      */
     'newApproverName'?: string;
     /**
-     * Comment made by old approver when forwarding.
+     * Comment made while forwarding.
      * @type {string}
      * @memberof ApprovalForwardHistory
      */
-    'comment'?: string;
+    'comment'?: string | null;
     /**
      * Time at which approval was forwarded.
      * @type {string}
      * @memberof ApprovalForwardHistory
      */
     'modified'?: string;
+    /**
+     * Display name of forwarder who forwarded the approval.
+     * @type {string}
+     * @memberof ApprovalForwardHistory
+     */
+    'forwarderName'?: string | null;
+    /**
+     *
+     * @type {ReassignmentType}
+     * @memberof ApprovalForwardHistory
+     */
+    'reassignmentType'?: ReassignmentType;
 }
 /**
  *
@@ -2520,9 +2771,35 @@ export declare const ApprovalScheme: {
     readonly Manager: "MANAGER";
     readonly RoleOwner: "ROLE_OWNER";
     readonly AccessProfileOwner: "ACCESS_PROFILE_OWNER";
+    readonly EntitlementOwner: "ENTITLEMENT_OWNER";
     readonly GovernanceGroup: "GOVERNANCE_GROUP";
 };
 export declare type ApprovalScheme = typeof ApprovalScheme[keyof typeof ApprovalScheme];
+/**
+ *
+ * @export
+ * @interface ApprovalSchemeForRole
+ */
+export interface ApprovalSchemeForRole {
+    /**
+     * Describes the individual or group that is responsible for an approval step. Values are as follows.  **OWNER**: Owner of the associated Role  **MANAGER**: Manager of the Identity making the request  **GOVERNANCE_GROUP**: A Governance Group, the ID of which is specified by the **approverId** field
+     * @type {string}
+     * @memberof ApprovalSchemeForRole
+     */
+    'approverType'?: ApprovalSchemeForRoleApproverTypeEnum;
+    /**
+     * Id of the specific approver, used only when approverType is GOVERNANCE_GROUP
+     * @type {string}
+     * @memberof ApprovalSchemeForRole
+     */
+    'approverId'?: string | null;
+}
+export declare const ApprovalSchemeForRoleApproverTypeEnum: {
+    readonly Owner: "OWNER";
+    readonly Manager: "MANAGER";
+    readonly GovernanceGroup: "GOVERNANCE_GROUP";
+};
+export declare type ApprovalSchemeForRoleApproverTypeEnum = typeof ApprovalSchemeForRoleApproverTypeEnum[keyof typeof ApprovalSchemeForRoleApproverTypeEnum];
 /**
  * Enum representing the non-employee request approval status
  * @export
@@ -3777,10 +4054,10 @@ export interface CompletedApproval {
     'requesterComment'?: CommentDto;
     /**
      *
-     * @type {CommentDto}
+     * @type {CompletedApprovalReviewerComment}
      * @memberof CompletedApproval
      */
-    'reviewerComment'?: CommentDto;
+    'reviewerComment'?: CompletedApprovalReviewerComment | null;
     /**
      * The history of the previous reviewers comments.
      * @type {Array<CommentDto>}
@@ -3810,7 +4087,7 @@ export interface CompletedApproval {
      * @type {string}
      * @memberof CompletedApproval
      */
-    'removeDate'?: string;
+    'removeDate'?: string | null;
     /**
      * If true, then the request was to change the remove date or sunset date.
      * @type {boolean}
@@ -3822,7 +4099,7 @@ export interface CompletedApproval {
      * @type {string}
      * @memberof CompletedApproval
      */
-    'currentRemoveDate'?: string;
+    'currentRemoveDate'?: string | null;
     /**
      *
      * @type {SodViolationContextCheckCompleted}
@@ -3830,6 +4107,31 @@ export interface CompletedApproval {
      */
     'sodViolationContext'?: SodViolationContextCheckCompleted;
 }
+/**
+ * The approval\'s reviewer\'s comment.
+ * @export
+ * @interface CompletedApprovalReviewerComment
+ */
+export interface CompletedApprovalReviewerComment {
+    /**
+     * Content of the comment
+     * @type {string}
+     * @memberof CompletedApprovalReviewerComment
+     */
+    'comment'?: string;
+    /**
+     *
+     * @type {CommentDtoAuthor}
+     * @memberof CompletedApprovalReviewerComment
+     */
+    'author'?: CommentDtoAuthor;
+    /**
+     * Date and time comment was created
+     * @type {string}
+     * @memberof CompletedApprovalReviewerComment
+     */
+    'created'?: string;
+}
 /**
  * Enum represents completed approval object\'s state.
  * @export
@@ -3918,32 +4220,6 @@ export interface Conditional {
         [key: string]: any;
     };
 }
-/**
- *
- * @export
- * @interface CreateAccessRequest401Response
- */
-export interface CreateAccessRequest401Response {
-    /**
-     * A message describing the error
-     * @type {object}
-     * @memberof CreateAccessRequest401Response
-     */
-    'error'?: object;
-}
-/**
- *
- * @export
- * @interface CreateAccessRequest429Response
- */
-export interface CreateAccessRequest429Response {
-    /**
-     * A message describing the error
-     * @type {object}
-     * @memberof CreateAccessRequest429Response
-     */
-    'message'?: object;
-}
 /**
  *
  * @export
@@ -4724,71 +5000,164 @@ export interface EmailNotificationOption {
     'emailAddressList'?: Array<string>;
 }
 /**
- * Entitlement
+ *
  * @export
- * @interface EntitlementDocument
+ * @interface Entitlement
  */
-export interface EntitlementDocument {
-    /**
-     * The unique ID of the referenced object.
-     * @type {string}
-     * @memberof EntitlementDocument
-     */
-    'id': string;
+export interface Entitlement {
     /**
-     * The human readable name of the referenced object.
+     * The entitlement id
      * @type {string}
-     * @memberof EntitlementDocument
-     */
-    'name': string;
-    /**
-     *
-     * @type {DocumentType}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
-    '_type': DocumentType;
+    'id'?: string;
     /**
-     * A description of the entitlement
+     * The entitlement name
      * @type {string}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
-    'description'?: string;
+    'name'?: string;
     /**
-     * The name of the entitlement attribute
+     * The entitlement attribute name
      * @type {string}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
     'attribute'?: string;
     /**
      * The value of the entitlement
      * @type {string}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
     'value'?: string;
     /**
-     * A date-time in ISO-8601 format
+     * The object type of the entitlement from the source schema
      * @type {string}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
-    'modified'?: string | null;
+    'sourceSchemaObjectType'?: string;
     /**
-     * A date-time in ISO-8601 format
+     * The description of the entitlement
      * @type {string}
-     * @memberof EntitlementDocument
+     * @memberof Entitlement
      */
-    'synced'?: string | null;
+    'description'?: string;
     /**
-     * The display name of the entitlement
-     * @type {string}
-     * @memberof EntitlementDocument
+     * True if the entitlement is privileged
+     * @type {boolean}
+     * @memberof Entitlement
      */
-    'displayName'?: string;
+    'privileged'?: boolean;
     /**
-     *
-     * @type {Reference1}
-     * @memberof EntitlementDocument
+     * True if the entitlement is cloud governed
+     * @type {boolean}
+     * @memberof Entitlement
      */
-    'source'?: Reference1;
+    'cloudGoverned'?: boolean;
+    /**
+     * Time when the entitlement was created
+     * @type {string}
+     * @memberof Entitlement
+     */
+    'created'?: string;
+    /**
+     * Time when the entitlement was last modified
+     * @type {string}
+     * @memberof Entitlement
+     */
+    'modified'?: string;
+    /**
+     *
+     * @type {EntitlementSource}
+     * @memberof Entitlement
+     */
+    'source'?: EntitlementSource;
+    /**
+     * A map of free-form key-value pairs from the source system
+     * @type {{ [key: string]: any; }}
+     * @memberof Entitlement
+     */
+    'attributes'?: {
+        [key: string]: any;
+    };
+    /**
+     * List of IDs of segments, if any, to which this Entitlement is assigned.
+     * @type {Array<string>}
+     * @memberof Entitlement
+     */
+    'segments'?: Array<string> | null;
+    /**
+     *
+     * @type {Array<PermissionDto>}
+     * @memberof Entitlement
+     */
+    'directPermissions'?: Array<PermissionDto>;
+}
+/**
+ * Entitlement
+ * @export
+ * @interface EntitlementDocument
+ */
+export interface EntitlementDocument {
+    /**
+     * The unique ID of the referenced object.
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'id': string;
+    /**
+     * The human readable name of the referenced object.
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'name': string;
+    /**
+     *
+     * @type {DocumentType}
+     * @memberof EntitlementDocument
+     */
+    '_type': DocumentType;
+    /**
+     * A description of the entitlement
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'description'?: string;
+    /**
+     * The name of the entitlement attribute
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'attribute'?: string;
+    /**
+     * The value of the entitlement
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'value'?: string;
+    /**
+     * A date-time in ISO-8601 format
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'modified'?: string | null;
+    /**
+     * A date-time in ISO-8601 format
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'synced'?: string | null;
+    /**
+     * The display name of the entitlement
+     * @type {string}
+     * @memberof EntitlementDocument
+     */
+    'displayName'?: string;
+    /**
+     *
+     * @type {Reference1}
+     * @memberof EntitlementDocument
+     */
+    'source'?: Reference1;
     /**
      *
      * @type {boolean}
@@ -4995,6 +5364,35 @@ export interface EntitlementDtoAllOf {
      */
     'source'?: BaseReferenceDto;
 }
+/**
+ *
+ * @export
+ * @interface EntitlementRef
+ */
+export interface EntitlementRef {
+    /**
+     * The ID of the Entitlement
+     * @type {string}
+     * @memberof EntitlementRef
+     */
+    'id'?: string;
+    /**
+     * The type of the Entitlement, will always be ENTITLEMENT
+     * @type {string}
+     * @memberof EntitlementRef
+     */
+    'type'?: EntitlementRefTypeEnum;
+    /**
+     * The display name of the Entitlement
+     * @type {string}
+     * @memberof EntitlementRef
+     */
+    'name'?: string;
+}
+export declare const EntitlementRefTypeEnum: {
+    readonly Entitlement: "ENTITLEMENT";
+};
+export declare type EntitlementRefTypeEnum = typeof EntitlementRefTypeEnum[keyof typeof EntitlementRefTypeEnum];
 /**
  *
  * @export
@@ -5020,12 +5418,37 @@ export interface EntitlementRequestConfig {
      */
     'deniedCommentsRequired'?: boolean;
     /**
-     * Approval schemes for granting entitlement request. This can be empty if no approval is needed. Multiple schemes must be comma-separated. The valid schemes are \"sourceOwner\", \"manager\" and \"workgroup:{id}\". Multiple workgroups (governance groups) can be used.
+     * Approval schemes for granting entitlement request. This can be empty if no approval is needed. Multiple schemes must be comma-separated. The valid schemes are \"entitlementOwner\", \"sourceOwner\", \"manager\" and \"workgroup:{id}\". Multiple workgroups (governance groups) can be used.
      * @type {string}
      * @memberof EntitlementRequestConfig
      */
     'grantRequestApprovalSchemes'?: string;
 }
+/**
+ *
+ * @export
+ * @interface EntitlementSource
+ */
+export interface EntitlementSource {
+    /**
+     * The source ID
+     * @type {string}
+     * @memberof EntitlementSource
+     */
+    'id'?: string;
+    /**
+     * The source type, will always be \"SOURCE\"
+     * @type {string}
+     * @memberof EntitlementSource
+     */
+    'type'?: string;
+    /**
+     * The source name
+     * @type {string}
+     * @memberof EntitlementSource
+     */
+    'name'?: string;
+}
 /**
  * EntitlementReference
  * @export
@@ -7394,6 +7817,32 @@ export interface LifecycleStateAllOf {
      */
     'accessProfileIds'?: Set<string>;
 }
+/**
+ *
+ * @export
+ * @interface ListAccessProfiles401Response
+ */
+export interface ListAccessProfiles401Response {
+    /**
+     * A message describing the error
+     * @type {object}
+     * @memberof ListAccessProfiles401Response
+     */
+    'error'?: object;
+}
+/**
+ *
+ * @export
+ * @interface ListAccessProfiles429Response
+ */
+export interface ListAccessProfiles429Response {
+    /**
+     * A message describing the error
+     * @type {object}
+     * @memberof ListAccessProfiles429Response
+     */
+    'message'?: object;
+}
 /**
  * An indicator of how the locale was selected. *DEFAULT* means the locale is the system default. *REQUEST* means the locale was selected from the request context (i.e., best match based on the *Accept-Language* header). Additional values may be added in the future without notice.
  * @export
@@ -7509,6 +7958,12 @@ export interface ManualWorkItemDetails {
      * @memberof ManualWorkItemDetails
      */
     'status'?: ManualWorkItemState;
+    /**
+     * The history of approval forward action.
+     * @type {Array<ApprovalForwardHistory>}
+     * @memberof ManualWorkItemDetails
+     */
+    'forwardHistory'?: Array<ApprovalForwardHistory>;
 }
 /**
  * Indicates the state of the request processing for this item: * PENDING: The request for this item is awaiting processing. * APPROVED: The request for this item has been approved. * REJECTED: The request for this item was rejected. * EXPIRED: The request for this item expired with no action taken. * CANCELLED: The request for this item was cancelled with no user action. * ARCHIVED: The request for this item has been archived after completion.
@@ -9231,6 +9686,31 @@ export interface OwnerAllOf {
      */
     'email'?: string;
 }
+/**
+ * The owner of this object.
+ * @export
+ * @interface OwnerReference
+ */
+export interface OwnerReference {
+    /**
+     *
+     * @type {DtoType}
+     * @memberof OwnerReference
+     */
+    'type'?: DtoType;
+    /**
+     * Identity id
+     * @type {string}
+     * @memberof OwnerReference
+     */
+    'id'?: string;
+    /**
+     * Human-readable display name of the owner. It may be left null or omitted in a POST or PATCH. If set, it must match the current value of the owner\'s display name, otherwise a 400 Bad Request error will result.
+     * @type {string}
+     * @memberof OwnerReference
+     */
+    'name'?: string;
+}
 /**
  *
  * @export
@@ -9423,6 +9903,37 @@ export interface PasswordInfoQueryDTO {
      */
     'sourceName'?: string;
 }
+/**
+ *
+ * @export
+ * @interface PasswordOrgConfig
+ */
+export interface PasswordOrgConfig {
+    /**
+     * Indicator whether custom password instructions feature is enabled. The default value is false.
+     * @type {boolean}
+     * @memberof PasswordOrgConfig
+     */
+    'customInstructionsEnabled'?: boolean;
+    /**
+     * Indicator whether \"digit token\" feature is enabled. The default value is false.
+     * @type {boolean}
+     * @memberof PasswordOrgConfig
+     */
+    'digitTokenEnabled'?: boolean;
+    /**
+     * The duration of \"digit token\" in minutes. The default value is 5.
+     * @type {number}
+     * @memberof PasswordOrgConfig
+     */
+    'digitTokenDurationMinutes'?: number;
+    /**
+     * The length of \"digit token\". The default value is 6.
+     * @type {number}
+     * @memberof PasswordOrgConfig
+     */
+    'digitTokenLength'?: number;
+}
 /**
  *
  * @export
@@ -9460,6 +9971,37 @@ export declare const PasswordStatusStateEnum: {
     readonly Failed: "FAILED";
 };
 export declare type PasswordStatusStateEnum = typeof PasswordStatusStateEnum[keyof typeof PasswordStatusStateEnum];
+/**
+ *
+ * @export
+ * @interface PasswordSyncGroup
+ */
+export interface PasswordSyncGroup {
+    /**
+     * ID of the sync group
+     * @type {string}
+     * @memberof PasswordSyncGroup
+     */
+    'id'?: string;
+    /**
+     * Name of the sync group
+     * @type {string}
+     * @memberof PasswordSyncGroup
+     */
+    'name'?: string;
+    /**
+     * ID of the password policy
+     * @type {string}
+     * @memberof PasswordSyncGroup
+     */
+    'passwordPolicyId'?: string;
+    /**
+     * List of password managed sources IDs
+     * @type {Array<string>}
+     * @memberof PasswordSyncGroup
+     */
+    'sourceIds'?: Array<string>;
+}
 /**
  *
  * @export
@@ -9592,6 +10134,25 @@ export declare const PendingApprovalAction: {
     readonly Forwarded: "FORWARDED";
 };
 export declare type PendingApprovalAction = typeof PendingApprovalAction[keyof typeof PendingApprovalAction];
+/**
+ * Simplified DTO for the Permission objects stored in SailPoint\'s database. The data is aggregated from customer systems and is free-form, so its appearance can vary largely between different clients/customers.
+ * @export
+ * @interface PermissionDto
+ */
+export interface PermissionDto {
+    /**
+     * All the rights (e.g. actions) that this permission allows on the target
+     * @type {Array<string>}
+     * @memberof PermissionDto
+     */
+    'rights'?: Array<string>;
+    /**
+     * The target the permission would grants rights on.
+     * @type {string}
+     * @memberof PermissionDto
+     */
+    'target'?: string;
+}
 /**
  * Provides additional details about the pre-approval trigger for this request.
  * @export
@@ -9683,6 +10244,18 @@ export interface ProvisioningConfig {
      * @memberof ProvisioningConfig
      */
     'planInitializerScript'?: ProvisioningConfigPlanInitializerScript;
+    /**
+     * Name of an attribute that when true disables the saving of ProvisioningRequest objects whenever plans are sent through this integration.
+     * @type {boolean}
+     * @memberof ProvisioningConfig
+     */
+    'noProvisioningRequests'?: boolean;
+    /**
+     * When saving pending requests is enabled, this defines the number of hours the request is allowed to live before it is considered expired and no longer affects plan compilation.
+     * @type {number}
+     * @memberof ProvisioningConfig
+     */
+    'provisioningRequestExpiration'?: number;
 }
 /**
  *
@@ -9692,22 +10265,22 @@ export interface ProvisioningConfig {
 export interface ProvisioningConfigManagedResourceRefsInner {
     /**
      * The type of object being referenced
-     * @type {string}
+     * @type {object}
      * @memberof ProvisioningConfigManagedResourceRefsInner
      */
     'type'?: ProvisioningConfigManagedResourceRefsInnerTypeEnum;
     /**
      * ID of the source
-     * @type {string}
+     * @type {object}
      * @memberof ProvisioningConfigManagedResourceRefsInner
      */
-    'id'?: string;
+    'id'?: object;
     /**
      * Human-readable display name of the source
-     * @type {string}
+     * @type {object}
      * @memberof ProvisioningConfigManagedResourceRefsInner
      */
-    'name'?: string;
+    'name'?: object;
 }
 export declare const ProvisioningConfigManagedResourceRefsInnerTypeEnum: {
     readonly Source: "SOURCE";
@@ -9727,36 +10300,137 @@ export interface ProvisioningConfigPlanInitializerScript {
     'source'?: string;
 }
 /**
- * Provides additional details about provisioning for this request.
+ * Defines matching criteria for an Account to be provisioned with a specific Access Profile
  * @export
- * @interface ProvisioningDetails
+ * @interface ProvisioningCriteriaLevel1
  */
-export interface ProvisioningDetails {
+export interface ProvisioningCriteriaLevel1 {
     /**
-     * Ordered CSV of sub phase references to objects that contain more information about provisioning. For example, this can contain \"manualWorkItemDetails\" which indicate that there is further information in that object for this phase.
-     * @type {string}
-     * @memberof ProvisioningDetails
+     *
+     * @type {ProvisioningCriteriaOperation}
+     * @memberof ProvisioningCriteriaLevel1
      */
-    'orderedSubPhaseReferences'?: string;
-}
-/**
- *
- * @export
- * @interface ProvisioningPolicy
- */
-export interface ProvisioningPolicy {
+    'operation'?: ProvisioningCriteriaOperation;
     /**
-     * the provisioning policy name
+     * Name of the Account attribute to be tested. If **operation** is one of EQUALS, NOT_EQUALS, CONTAINS, or HAS, this field is required. Otherwise, specifying it is an error.
      * @type {string}
-     * @memberof ProvisioningPolicy
+     * @memberof ProvisioningCriteriaLevel1
      */
-    'name': string;
+    'attribute'?: string | null;
     /**
-     * the description of the provisioning policy
+     * String value to test the Account attribute w/r/t the specified operation. If the operation is one of EQUALS, NOT_EQUALS, or CONTAINS, this field is required. Otherwise, specifying it is an error. If the Attribute is not String-typed, it will be converted to the appropriate type.
      * @type {string}
-     * @memberof ProvisioningPolicy
+     * @memberof ProvisioningCriteriaLevel1
      */
-    'description'?: string;
+    'value'?: string | null;
+    /**
+     * Array of child criteria. Required if the operation is AND or OR, otherwise it must be left null. A maximum of three levels of criteria are supported, including leaf nodes.
+     * @type {Array<ProvisioningCriteriaLevel2>}
+     * @memberof ProvisioningCriteriaLevel1
+     */
+    'children'?: Array<ProvisioningCriteriaLevel2> | null;
+}
+/**
+ * Defines matching criteria for an Account to be provisioned with a specific Access Profile
+ * @export
+ * @interface ProvisioningCriteriaLevel2
+ */
+export interface ProvisioningCriteriaLevel2 {
+    /**
+     *
+     * @type {ProvisioningCriteriaOperation}
+     * @memberof ProvisioningCriteriaLevel2
+     */
+    'operation'?: ProvisioningCriteriaOperation;
+    /**
+     * Name of the Account attribute to be tested. If **operation** is one of EQUALS, NOT_EQUALS, CONTAINS, or HAS, this field is required. Otherwise, specifying it is an error.
+     * @type {string}
+     * @memberof ProvisioningCriteriaLevel2
+     */
+    'attribute'?: string | null;
+    /**
+     * String value to test the Account attribute w/r/t the specified operation. If the operation is one of EQUALS, NOT_EQUALS, or CONTAINS, this field is required. Otherwise, specifying it is an error. If the Attribute is not String-typed, it will be converted to the appropriate type.
+     * @type {string}
+     * @memberof ProvisioningCriteriaLevel2
+     */
+    'value'?: string | null;
+    /**
+     * Array of child criteria. Required if the operation is AND or OR, otherwise it must be left null. A maximum of three levels of criteria are supported, including leaf nodes.
+     * @type {Array<ProvisioningCriteriaLevel3>}
+     * @memberof ProvisioningCriteriaLevel2
+     */
+    'children'?: Array<ProvisioningCriteriaLevel3> | null;
+}
+/**
+ * Defines matching criteria for an Account to be provisioned with a specific Access Profile
+ * @export
+ * @interface ProvisioningCriteriaLevel3
+ */
+export interface ProvisioningCriteriaLevel3 {
+    /**
+     *
+     * @type {ProvisioningCriteriaOperation}
+     * @memberof ProvisioningCriteriaLevel3
+     */
+    'operation'?: ProvisioningCriteriaOperation;
+    /**
+     * Name of the Account attribute to be tested. If **operation** is one of EQUALS, NOT_EQUALS, CONTAINS, or HAS, this field is required. Otherwise, specifying it is an error.
+     * @type {string}
+     * @memberof ProvisioningCriteriaLevel3
+     */
+    'attribute'?: string | null;
+    /**
+     * String value to test the Account attribute w/r/t the specified operation. If the operation is one of EQUALS, NOT_EQUALS, or CONTAINS, this field is required. Otherwise, specifying it is an error. If the Attribute is not String-typed, it will be converted to the appropriate type.
+     * @type {string}
+     * @memberof ProvisioningCriteriaLevel3
+     */
+    'value'?: string;
+}
+/**
+ * Supported operations on ProvisioningCriteria
+ * @export
+ * @enum {string}
+ */
+export declare const ProvisioningCriteriaOperation: {
+    readonly Equals: "EQUALS";
+    readonly NotEquals: "NOT_EQUALS";
+    readonly Contains: "CONTAINS";
+    readonly Has: "HAS";
+    readonly And: "AND";
+    readonly Or: "OR";
+};
+export declare type ProvisioningCriteriaOperation = typeof ProvisioningCriteriaOperation[keyof typeof ProvisioningCriteriaOperation];
+/**
+ * Provides additional details about provisioning for this request.
+ * @export
+ * @interface ProvisioningDetails
+ */
+export interface ProvisioningDetails {
+    /**
+     * Ordered CSV of sub phase references to objects that contain more information about provisioning. For example, this can contain \"manualWorkItemDetails\" which indicate that there is further information in that object for this phase.
+     * @type {string}
+     * @memberof ProvisioningDetails
+     */
+    'orderedSubPhaseReferences'?: string;
+}
+/**
+ *
+ * @export
+ * @interface ProvisioningPolicy
+ */
+export interface ProvisioningPolicy {
+    /**
+     * the provisioning policy name
+     * @type {string}
+     * @memberof ProvisioningPolicy
+     */
+    'name': string;
+    /**
+     * the description of the provisioning policy
+     * @type {string}
+     * @memberof ProvisioningPolicy
+     */
+    'description'?: string;
     /**
      *
      * @type {UsageType}
@@ -10130,6 +10804,18 @@ export declare const ReassignmentReferenceTypeEnum: {
     readonly IdentitySummary: "IDENTITY_SUMMARY";
 };
 export declare type ReassignmentReferenceTypeEnum = typeof ReassignmentReferenceTypeEnum[keyof typeof ReassignmentReferenceTypeEnum];
+/**
+ * Type of approval reassignment.
+ * @export
+ * @enum {string}
+ */
+export declare const ReassignmentType: {
+    readonly ManualReassignment: "MANUAL_REASSIGNMENT";
+    readonly AutomaticReassignment: "AUTOMATIC_REASSIGNMENT";
+    readonly AutoEscalation: "AUTO_ESCALATION";
+    readonly SelfReviewDelegation: "SELF_REVIEW_DELEGATION";
+};
+export declare type ReassignmentType = typeof ReassignmentType[keyof typeof ReassignmentType];
 /**
  *
  * @export
@@ -10379,6 +11065,56 @@ export interface RequestOnBehalfOfConfig {
      */
     'allowRequestOnBehalfOfEmployeeByManager'?: boolean;
 }
+/**
+ *
+ * @export
+ * @interface Requestability
+ */
+export interface Requestability {
+    /**
+     * Whether the requester of the containing object must provide comments justifying the request
+     * @type {boolean}
+     * @memberof Requestability
+     */
+    'commentsRequired'?: boolean;
+    /**
+     * Whether an approver must provide comments when denying the request
+     * @type {boolean}
+     * @memberof Requestability
+     */
+    'denialCommentsRequired'?: boolean;
+    /**
+     * List describing the steps in approving the request
+     * @type {Array<AccessProfileApprovalScheme>}
+     * @memberof Requestability
+     */
+    'approvalSchemes'?: Array<AccessProfileApprovalScheme>;
+}
+/**
+ *
+ * @export
+ * @interface RequestabilityForRole
+ */
+export interface RequestabilityForRole {
+    /**
+     * Whether the requester of the containing object must provide comments justifying the request
+     * @type {boolean}
+     * @memberof RequestabilityForRole
+     */
+    'commentsRequired'?: boolean;
+    /**
+     * Whether an approver must provide comments when denying the request
+     * @type {boolean}
+     * @memberof RequestabilityForRole
+     */
+    'denialCommentsRequired'?: boolean;
+    /**
+     * List describing the steps in approving the request
+     * @type {Array<ApprovalSchemeForRole>}
+     * @memberof RequestabilityForRole
+     */
+    'approvalSchemes'?: Array<ApprovalSchemeForRole>;
+}
 /**
  *
  * @export
@@ -11089,6 +11825,19 @@ export declare const ReviewerTypeEnum: {
     readonly Identity: "IDENTITY";
 };
 export declare type ReviewerTypeEnum = typeof ReviewerTypeEnum[keyof typeof ReviewerTypeEnum];
+/**
+ *
+ * @export
+ * @interface Revocability
+ */
+export interface Revocability {
+    /**
+     * List describing the steps in approving the revocation request
+     * @type {Array<AccessProfileApprovalScheme>}
+     * @memberof Revocability
+     */
+    'approvalSchemes'?: Array<AccessProfileApprovalScheme>;
+}
 /**
  *
  * @export
@@ -11122,6 +11871,247 @@ export interface RightPad {
         [key: string]: any;
     };
 }
+/**
+ * A Role
+ * @export
+ * @interface Role
+ */
+export interface Role {
+    /**
+     * The id of the Role. This field must be left null when creating an Role, otherwise a 400 Bad Request error will result.
+     * @type {string}
+     * @memberof Role
+     */
+    'id'?: string;
+    /**
+     * The human-readable display name of the Role
+     * @type {string}
+     * @memberof Role
+     */
+    'name': string;
+    /**
+     * Date the Role was created
+     * @type {string}
+     * @memberof Role
+     */
+    'created'?: string;
+    /**
+     * Date the Role was last modified.
+     * @type {string}
+     * @memberof Role
+     */
+    'modified'?: string;
+    /**
+     * A human-readable description of the Role
+     * @type {string}
+     * @memberof Role
+     */
+    'description'?: string | null;
+    /**
+     *
+     * @type {OwnerReference}
+     * @memberof Role
+     */
+    'owner': OwnerReference;
+    /**
+     *
+     * @type {Array<AccessProfileRef>}
+     * @memberof Role
+     */
+    'accessProfiles'?: Array<AccessProfileRef> | null;
+    /**
+     *
+     * @type {RoleMembershipSelector}
+     * @memberof Role
+     */
+    'membership'?: RoleMembershipSelector | null;
+    /**
+     * This field is not directly modifiable and is generally expected to be *null*. In very rare instances, some Roles may have been created using membership selection criteria that are no longer fully supported. While these Roles will still work, they should be migrated to STANDARD or IDENTITY_LIST selection criteria. This field exists for informational purposes as an aid to such migration.
+     * @type {{ [key: string]: any; }}
+     * @memberof Role
+     */
+    'legacyMembershipInfo'?: {
+        [key: string]: any;
+    } | null;
+    /**
+     * Whether the Role is enabled or not. This field is false by default.
+     * @type {boolean}
+     * @memberof Role
+     */
+    'enabled'?: boolean;
+    /**
+     * Whether the Role can be the target of Access Requests. This field is false by default.
+     * @type {boolean}
+     * @memberof Role
+     */
+    'requestable'?: boolean;
+    /**
+     *
+     * @type {RequestabilityForRole}
+     * @memberof Role
+     */
+    'accessRequestConfig'?: RequestabilityForRole;
+    /**
+     *
+     * @type {Revocability}
+     * @memberof Role
+     */
+    'revocationRequestConfig'?: Revocability;
+    /**
+     * List of IDs of segments, if any, to which this Role is assigned.
+     * @type {Array<string>}
+     * @memberof Role
+     */
+    'segments'?: Array<string> | null;
+}
+/**
+ * Type which indicates how a particular Identity obtained a particular Role
+ * @export
+ * @enum {string}
+ */
+export declare const RoleAssignmentSourceType: {
+    readonly AccessRequest: "ACCESS_REQUEST";
+    readonly RoleMembership: "ROLE_MEMBERSHIP";
+};
+export declare type RoleAssignmentSourceType = typeof RoleAssignmentSourceType[keyof typeof RoleAssignmentSourceType];
+/**
+ * Refers to a specific Identity attribute, Account attibute, or Entitlement used in Role membership criteria
+ * @export
+ * @interface RoleCriteriaKey
+ */
+export interface RoleCriteriaKey {
+    /**
+     *
+     * @type {RoleCriteriaKeyType}
+     * @memberof RoleCriteriaKey
+     */
+    'type': RoleCriteriaKeyType;
+    /**
+     * The name of the attribute or entitlement to which the associated criteria applies.
+     * @type {string}
+     * @memberof RoleCriteriaKey
+     */
+    'property': string;
+    /**
+     * ID of the Source from which an account attribute or entitlement is drawn. Required if type is ACCOUNT or ENTITLEMENT
+     * @type {string}
+     * @memberof RoleCriteriaKey
+     */
+    'sourceId'?: string | null;
+}
+/**
+ * Indicates whether the associated criteria represents an expression on identity attributes, account attributes, or entitlements, respectively.
+ * @export
+ * @enum {string}
+ */
+export declare const RoleCriteriaKeyType: {
+    readonly Identity: "IDENTITY";
+    readonly Account: "ACCOUNT";
+    readonly Entitlement: "ENTITLEMENT";
+};
+export declare type RoleCriteriaKeyType = typeof RoleCriteriaKeyType[keyof typeof RoleCriteriaKeyType];
+/**
+ * Defines STANDARD type Role membership
+ * @export
+ * @interface RoleCriteriaLevel1
+ */
+export interface RoleCriteriaLevel1 {
+    /**
+     *
+     * @type {RoleCriteriaOperation}
+     * @memberof RoleCriteriaLevel1
+     */
+    'operation'?: RoleCriteriaOperation;
+    /**
+     *
+     * @type {RoleCriteriaKey}
+     * @memberof RoleCriteriaLevel1
+     */
+    'key'?: RoleCriteriaKey | null;
+    /**
+     * String value to test the Identity attribute, Account attribute, or Entitlement specified in the key w/r/t the specified operation. If this criteria is a leaf node, that is, if the operation is one of EQUALS, NOT_EQUALS, CONTAINS, STARTS_WITH, or ENDS_WITH, this field is required. Otherwise, specifying it is an error.
+     * @type {string}
+     * @memberof RoleCriteriaLevel1
+     */
+    'stringValue'?: string | null;
+    /**
+     * Array of child criteria. Required if the operation is AND or OR, otherwise it must be left null. A maximum of three levels of criteria are supported, including leaf nodes. Additionally, AND nodes can only be children or OR nodes and vice-versa.
+     * @type {Array<RoleCriteriaLevel2>}
+     * @memberof RoleCriteriaLevel1
+     */
+    'children'?: Array<RoleCriteriaLevel2> | null;
+}
+/**
+ * Defines STANDARD type Role membership
+ * @export
+ * @interface RoleCriteriaLevel2
+ */
+export interface RoleCriteriaLevel2 {
+    /**
+     *
+     * @type {RoleCriteriaOperation}
+     * @memberof RoleCriteriaLevel2
+     */
+    'operation'?: RoleCriteriaOperation;
+    /**
+     *
+     * @type {RoleCriteriaKey}
+     * @memberof RoleCriteriaLevel2
+     */
+    'key'?: RoleCriteriaKey | null;
+    /**
+     * String value to test the Identity attribute, Account attribute, or Entitlement specified in the key w/r/t the specified operation. If this criteria is a leaf node, that is, if the operation is one of EQUALS, NOT_EQUALS, CONTAINS, STARTS_WITH, or ENDS_WITH, this field is required. Otherwise, specifying it is an error.
+     * @type {string}
+     * @memberof RoleCriteriaLevel2
+     */
+    'stringValue'?: string | null;
+    /**
+     * Array of child criteria. Required if the operation is AND or OR, otherwise it must be left null. A maximum of three levels of criteria are supported, including leaf nodes. Additionally, AND nodes can only be children or OR nodes and vice-versa.
+     * @type {Array<RoleCriteriaLevel3>}
+     * @memberof RoleCriteriaLevel2
+     */
+    'children'?: Array<RoleCriteriaLevel3> | null;
+}
+/**
+ * Defines STANDARD type Role membership
+ * @export
+ * @interface RoleCriteriaLevel3
+ */
+export interface RoleCriteriaLevel3 {
+    /**
+     *
+     * @type {RoleCriteriaOperation}
+     * @memberof RoleCriteriaLevel3
+     */
+    'operation'?: RoleCriteriaOperation;
+    /**
+     *
+     * @type {RoleCriteriaKey}
+     * @memberof RoleCriteriaLevel3
+     */
+    'key'?: RoleCriteriaKey | null;
+    /**
+     * String value to test the Identity attribute, Account attribute, or Entitlement specified in the key w/r/t the specified operation. If this criteria is a leaf node, that is, if the operation is one of EQUALS, NOT_EQUALS, CONTAINS, STARTS_WITH, or ENDS_WITH, this field is required. Otherwise, specifying it is an error.
+     * @type {string}
+     * @memberof RoleCriteriaLevel3
+     */
+    'stringValue'?: string;
+}
+/**
+ * An operation
+ * @export
+ * @enum {string}
+ */
+export declare const RoleCriteriaOperation: {
+    readonly Equals: "EQUALS";
+    readonly NotEquals: "NOT_EQUALS";
+    readonly Contains: "CONTAINS";
+    readonly StartsWith: "STARTS_WITH";
+    readonly EndsWith: "ENDS_WITH";
+    readonly And: "AND";
+    readonly Or: "OR";
+};
+export declare type RoleCriteriaOperation = typeof RoleCriteriaOperation[keyof typeof RoleCriteriaOperation];
 /**
  * Role
  * @export
@@ -11239,35 +12229,138 @@ export interface RoleDocumentAllOf {
     'tags'?: Array<string>;
 }
 /**
- * Role
+ * A subset of the fields of an Identity which is a member of a Role.
  * @export
- * @interface RoleSummary
+ * @interface RoleIdentity
  */
-export interface RoleSummary {
+export interface RoleIdentity {
     /**
-     * The unique ID of the referenced object.
+     * The ID of the Identity
      * @type {string}
-     * @memberof RoleSummary
+     * @memberof RoleIdentity
      */
     'id'?: string;
     /**
-     * The human readable name of the referenced object.
+     * The alias / username of the Identity
      * @type {string}
-     * @memberof RoleSummary
+     * @memberof RoleIdentity
      */
-    'name'?: string;
+    'aliasName'?: string;
     /**
-     *
+     * The human-readable display name of the Identity
      * @type {string}
-     * @memberof RoleSummary
+     * @memberof RoleIdentity
      */
-    'displayName'?: string;
+    'name'?: string;
     /**
-     *
-     * @type {DtoType}
-     * @memberof RoleSummary
+     * Email address of the Identity
+     * @type {string}
+     * @memberof RoleIdentity
      */
-    'type'?: DtoType;
+    'email'?: string;
+    /**
+     *
+     * @type {RoleAssignmentSourceType}
+     * @memberof RoleIdentity
+     */
+    'roleAssignmentSource'?: RoleAssignmentSourceType;
+}
+/**
+ * A reference to an Identity in an IDENTITY_LIST role membership criteria.
+ * @export
+ * @interface RoleMembershipIdentity
+ */
+export interface RoleMembershipIdentity {
+    /**
+     *
+     * @type {DtoType}
+     * @memberof RoleMembershipIdentity
+     */
+    'type'?: DtoType;
+    /**
+     * Identity id
+     * @type {string}
+     * @memberof RoleMembershipIdentity
+     */
+    'id'?: string;
+    /**
+     * Human-readable display name of the Identity.
+     * @type {string}
+     * @memberof RoleMembershipIdentity
+     */
+    'name'?: string | null;
+    /**
+     * User name of the Identity
+     * @type {string}
+     * @memberof RoleMembershipIdentity
+     */
+    'aliasName'?: string | null;
+}
+/**
+ * When present, specifies that the Role is to be granted to Identities which either satisfy specific criteria or which are members of a given list of Identities.
+ * @export
+ * @interface RoleMembershipSelector
+ */
+export interface RoleMembershipSelector {
+    /**
+     *
+     * @type {RoleMembershipSelectorType}
+     * @memberof RoleMembershipSelector
+     */
+    'type'?: RoleMembershipSelectorType;
+    /**
+     *
+     * @type {RoleCriteriaLevel1}
+     * @memberof RoleMembershipSelector
+     */
+    'criteria'?: RoleCriteriaLevel1 | null;
+    /**
+     * Defines role membership as being exclusive to the specified Identities, when type is IDENTITY_LIST.
+     * @type {Array<RoleMembershipIdentity>}
+     * @memberof RoleMembershipSelector
+     */
+    'identities'?: Array<RoleMembershipIdentity> | null;
+}
+/**
+ * This enum characterizes the type of a Role\'s membership selector. Only the following two are fully supported:  STANDARD: Indicates that Role membership is defined in terms of a criteria expression  IDENTITY_LIST: Indicates that Role membership is conferred on the specific identities listed
+ * @export
+ * @enum {string}
+ */
+export declare const RoleMembershipSelectorType: {
+    readonly Standard: "STANDARD";
+    readonly IdentityList: "IDENTITY_LIST";
+};
+export declare type RoleMembershipSelectorType = typeof RoleMembershipSelectorType[keyof typeof RoleMembershipSelectorType];
+/**
+ * Role
+ * @export
+ * @interface RoleSummary
+ */
+export interface RoleSummary {
+    /**
+     * The unique ID of the referenced object.
+     * @type {string}
+     * @memberof RoleSummary
+     */
+    'id'?: string;
+    /**
+     * The human readable name of the referenced object.
+     * @type {string}
+     * @memberof RoleSummary
+     */
+    'name'?: string;
+    /**
+     *
+     * @type {string}
+     * @memberof RoleSummary
+     */
+    'displayName'?: string;
+    /**
+     *
+     * @type {DtoType}
+     * @memberof RoleSummary
+     */
+    'type'?: DtoType;
     /**
      *
      * @type {string}
@@ -12319,17 +13412,17 @@ export interface ServiceDeskIntegrationDto {
      */
     'type': string;
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfOwnerRef}
+     * Reference to the identity that is the owner of this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDto
      */
-    'ownerRef'?: ServiceDeskIntegrationDtoAllOfOwnerRef;
+    'ownerRef'?: BaseReferenceDto;
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfClusterRef}
+     * Reference to the source cluster for this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDto
      */
-    'clusterRef'?: ServiceDeskIntegrationDtoAllOfClusterRef;
+    'clusterRef'?: BaseReferenceDto;
     /**
      * ID of the cluster for the Service Desk integration (replaced by clusterRef, retained for backward compatibility)
      * @type {string}
@@ -12359,11 +13452,11 @@ export interface ServiceDeskIntegrationDto {
         [key: string]: any;
     };
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule}
+     * Reference to beforeProvisioningRule for this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDto
      */
-    'beforeProvisioningRule'?: ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule;
+    'beforeProvisioningRule'?: BaseReferenceDto;
 }
 /**
  * Specification of a Service Desk integration
@@ -12384,17 +13477,17 @@ export interface ServiceDeskIntegrationDtoAllOf {
      */
     'type': string;
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfOwnerRef}
+     * Reference to the identity that is the owner of this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDtoAllOf
      */
-    'ownerRef'?: ServiceDeskIntegrationDtoAllOfOwnerRef;
+    'ownerRef'?: BaseReferenceDto;
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfClusterRef}
+     * Reference to the source cluster for this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDtoAllOf
      */
-    'clusterRef'?: ServiceDeskIntegrationDtoAllOfClusterRef;
+    'clusterRef'?: BaseReferenceDto;
     /**
      * ID of the cluster for the Service Desk integration (replaced by clusterRef, retained for backward compatibility)
      * @type {string}
@@ -12424,99 +13517,12 @@ export interface ServiceDeskIntegrationDtoAllOf {
         [key: string]: any;
     };
     /**
-     *
-     * @type {ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule}
+     * Reference to beforeProvisioningRule for this Service Desk integration
+     * @type {BaseReferenceDto}
      * @memberof ServiceDeskIntegrationDtoAllOf
      */
-    'beforeProvisioningRule'?: ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule;
-}
-/**
- * Reference to beforeProvisioningRule for this Service Desk integration
- * @export
- * @interface ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule
- */
-export interface ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule {
-    /**
-     * The type of object being referenced
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule
-     */
-    'type'?: ServiceDeskIntegrationDtoAllOfBeforeProvisioningRuleTypeEnum;
-    /**
-     * ID of the rule
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule
-     */
-    'id'?: string;
-    /**
-     * Human-readable display name of the rule
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfBeforeProvisioningRule
-     */
-    'name'?: string;
-}
-export declare const ServiceDeskIntegrationDtoAllOfBeforeProvisioningRuleTypeEnum: {
-    readonly Rule: "RULE";
-};
-export declare type ServiceDeskIntegrationDtoAllOfBeforeProvisioningRuleTypeEnum = typeof ServiceDeskIntegrationDtoAllOfBeforeProvisioningRuleTypeEnum[keyof typeof ServiceDeskIntegrationDtoAllOfBeforeProvisioningRuleTypeEnum];
-/**
- * Reference to the source cluster for this Service Desk integration
- * @export
- * @interface ServiceDeskIntegrationDtoAllOfClusterRef
- */
-export interface ServiceDeskIntegrationDtoAllOfClusterRef {
-    /**
-     * The type of object being referenced
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfClusterRef
-     */
-    'type'?: ServiceDeskIntegrationDtoAllOfClusterRefTypeEnum;
-    /**
-     * ID of the cluster
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfClusterRef
-     */
-    'id'?: string;
-    /**
-     * Human-readable display name of the cluster
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfClusterRef
-     */
-    'name'?: string;
-}
-export declare const ServiceDeskIntegrationDtoAllOfClusterRefTypeEnum: {
-    readonly Cluster: "CLUSTER";
-};
-export declare type ServiceDeskIntegrationDtoAllOfClusterRefTypeEnum = typeof ServiceDeskIntegrationDtoAllOfClusterRefTypeEnum[keyof typeof ServiceDeskIntegrationDtoAllOfClusterRefTypeEnum];
-/**
- * Reference to the identity that is the owner of this Service Desk integration
- * @export
- * @interface ServiceDeskIntegrationDtoAllOfOwnerRef
- */
-export interface ServiceDeskIntegrationDtoAllOfOwnerRef {
-    /**
-     * The type of object being referenced
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfOwnerRef
-     */
-    'type'?: ServiceDeskIntegrationDtoAllOfOwnerRefTypeEnum;
-    /**
-     * ID of the identity
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfOwnerRef
-     */
-    'id'?: string;
-    /**
-     * Human-readable display name of the identity
-     * @type {string}
-     * @memberof ServiceDeskIntegrationDtoAllOfOwnerRef
-     */
-    'name'?: string;
+    'beforeProvisioningRule'?: BaseReferenceDto;
 }
-export declare const ServiceDeskIntegrationDtoAllOfOwnerRefTypeEnum: {
-    readonly Identity: "IDENTITY";
-};
-export declare type ServiceDeskIntegrationDtoAllOfOwnerRefTypeEnum = typeof ServiceDeskIntegrationDtoAllOfOwnerRefTypeEnum[keyof typeof ServiceDeskIntegrationDtoAllOfOwnerRefTypeEnum];
 /**
  *
  * @export
@@ -12803,6 +13809,12 @@ export interface Source {
      * @memberof Source
      */
     'id'?: string;
+    /**
+     * Human-readable name of the source
+     * @type {string}
+     * @memberof Source
+     */
+    'name': string;
     /**
      * Human-readable description of the source
      * @type {string}
@@ -12814,7 +13826,7 @@ export interface Source {
      * @type {SourceOwner}
      * @memberof Source
      */
-    'owner'?: SourceOwner;
+    'owner': SourceOwner;
     /**
      *
      * @type {SourceCluster}
@@ -12880,7 +13892,7 @@ export interface Source {
      * @type {string}
      * @memberof Source
      */
-    'connector'?: string;
+    'connector': string;
     /**
      * The fully qualified name of the Java class that implements the connector interface.
      * @type {string}
@@ -13703,28 +14715,28 @@ export interface UUIDGenerator {
 /**
  *
  * @export
- * @interface UploadNonEmployeeRecordsInBulkRequest
+ * @interface UpdatePasswordDictionaryRequest
  */
-export interface UploadNonEmployeeRecordsInBulkRequest {
+export interface UpdatePasswordDictionaryRequest {
     /**
      *
-     * @type {string}
-     * @memberof UploadNonEmployeeRecordsInBulkRequest
+     * @type {any}
+     * @memberof UpdatePasswordDictionaryRequest
      */
-    'data': string;
+    'file'?: any;
 }
 /**
  *
  * @export
- * @interface UploadSourceAccountsSchemaRequest
+ * @interface UploadNonEmployeeRecordsInBulkRequest
  */
-export interface UploadSourceAccountsSchemaRequest {
+export interface UploadNonEmployeeRecordsInBulkRequest {
     /**
      *
-     * @type {any}
-     * @memberof UploadSourceAccountsSchemaRequest
+     * @type {string}
+     * @memberof UploadNonEmployeeRecordsInBulkRequest
      */
-    'file'?: any;
+    'data': string;
 }
 /**
  *
@@ -13956,530 +14968,949 @@ export interface WorkItemsSummary {
     'total'?: number;
 }
 /**
- * AccessRequestApprovalsApi - axios parameter creator
+ * AccessProfilesApi - axios parameter creator
  * @export
  */
-export declare const AccessRequestApprovalsApiAxiosParamCreator: (configuration?: Configuration) => {
+export declare const AccessProfilesApiAxiosParamCreator: (configuration?: Configuration) => {
     /**
-     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Approves an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API creates an Access Profile. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a token with only ROLE_SUBADMIN or SOURCE_SUBADMIN authority must be associated with the Access Profile\'s Source. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create an Access Profile
+     * @param {AccessProfile} accessProfile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    approveAccessRequest: (approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    createAccessProfile: (accessProfile: AccessProfile, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Forwards an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
+     * This API initiates a bulk deletion of one or more Access Profiles.  By default, if any of the indicated Access Profiles are in use, no deletions will be performed and the **inUse** field of the response indicates the usages that must be removed first. If the request field **bestEffortOnly** is **true**, however, usages are reported in the **inUse** response field but all other indicated Access Profiles will be deleted.  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to delete Access Profiles which are associated with Sources they are able to administer.
+     * @summary Delete Access Profile(s)
+     * @param {AccessProfileBulkDeleteRequest} accessProfileBulkDeleteRequest
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    forwardAccessRequest: (approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    deleteAccessProfilesInBulk: (accessProfileBulkDeleteRequest: AccessProfileBulkDeleteRequest, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Get the number of access-requests-approvals
-     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * This API returns an Access Profile by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary Get an Access Profile
+     * @param {string} id ID of the Access Profile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    getAccessRequestApprovalSummary: (ownerId?: string, fromDate?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    getAccessProfile: (id: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
-     * @summary Completed Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * This API lists the Entitlements associated with a given Access Profile  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a token with SOURCE_SUBADMIN authority must have access to the Source associated with the given Access Profile
+     * @summary List Access Profile\'s Entitlements
+     * @param {string} id ID of the containing Access Profile
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following Entitlement fields and operators: **id**: *eq, in*  **name**: *eq, sw*  **attribute**: *eq, sw*  **value**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, attribute, value, created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listCompletedApprovals: (ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    getAccessProfileEntitlements: (id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Pending Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * This API returns a list of Access Profiles.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary List Access Profiles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN or SOURCE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID.  A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **name**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **requestable**: *eq*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Access Profiles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Access Profiles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listPendingApprovals: (ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    listAccessProfiles: (forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
-     * @summary Rejects an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API updates an existing Access Profile. The following fields are patchable: **name**, **description**, **enabled**, **owner**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments**, **entitlements**, **provisioningCriteria** A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to patch Access Profiles which are associated with Sources they are able to administer. >  The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.  > You can only add or replace **entitlements** that exist on the source that the access profile is attached to. You can use the **list entitlements** endpoint with the **filters** query parameter to get a list of available entitlements on the access profile\'s source.  >  Patching the value of the **requestable** field is only supported for customers enabled with the new Request Center. Otherwise, attempting to modify this field results in a 400 error.
+     * @summary Patch a specified Access Profile
+     * @param {string} id ID of the Access Profile to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    rejectAccessRequest: (approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    patchAccessProfile: (id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
 };
 /**
- * AccessRequestApprovalsApi - functional programming interface
+ * AccessProfilesApi - functional programming interface
  * @export
  */
-export declare const AccessRequestApprovalsApiFp: (configuration?: Configuration) => {
+export declare const AccessProfilesApiFp: (configuration?: Configuration) => {
     /**
-     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Approves an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API creates an Access Profile. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a token with only ROLE_SUBADMIN or SOURCE_SUBADMIN authority must be associated with the Access Profile\'s Source. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create an Access Profile
+     * @param {AccessProfile} accessProfile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    approveAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    createAccessProfile(accessProfile: AccessProfile, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessProfile>>;
     /**
-     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Forwards an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
+     * This API initiates a bulk deletion of one or more Access Profiles.  By default, if any of the indicated Access Profiles are in use, no deletions will be performed and the **inUse** field of the response indicates the usages that must be removed first. If the request field **bestEffortOnly** is **true**, however, usages are reported in the **inUse** response field but all other indicated Access Profiles will be deleted.  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to delete Access Profiles which are associated with Sources they are able to administer.
+     * @summary Delete Access Profile(s)
+     * @param {AccessProfileBulkDeleteRequest} accessProfileBulkDeleteRequest
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    forwardAccessRequest(approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    deleteAccessProfilesInBulk(accessProfileBulkDeleteRequest: AccessProfileBulkDeleteRequest, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessProfileBulkDeleteResponse>>;
     /**
-     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Get the number of access-requests-approvals
-     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * This API returns an Access Profile by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary Get an Access Profile
+     * @param {string} id ID of the Access Profile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    getAccessRequestApprovalSummary(ownerId?: string, fromDate?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<ApprovalSummary>>;
+    getAccessProfile(id: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessProfile>>;
     /**
-     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
-     * @summary Completed Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * This API lists the Entitlements associated with a given Access Profile  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a token with SOURCE_SUBADMIN authority must have access to the Source associated with the given Access Profile
+     * @summary List Access Profile\'s Entitlements
+     * @param {string} id ID of the containing Access Profile
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following Entitlement fields and operators: **id**: *eq, in*  **name**: *eq, sw*  **attribute**: *eq, sw*  **value**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, attribute, value, created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listCompletedApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<CompletedApproval>>>;
+    getAccessProfileEntitlements(id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<Entitlement>>>;
     /**
-     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Pending Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * This API returns a list of Access Profiles.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary List Access Profiles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN or SOURCE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID.  A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **name**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **requestable**: *eq*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Access Profiles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Access Profiles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listPendingApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<PendingApproval>>>;
+    listAccessProfiles(forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<AccessProfile>>>;
     /**
-     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
-     * @summary Rejects an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API updates an existing Access Profile. The following fields are patchable: **name**, **description**, **enabled**, **owner**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments**, **entitlements**, **provisioningCriteria** A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to patch Access Profiles which are associated with Sources they are able to administer. >  The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.  > You can only add or replace **entitlements** that exist on the source that the access profile is attached to. You can use the **list entitlements** endpoint with the **filters** query parameter to get a list of available entitlements on the access profile\'s source.  >  Patching the value of the **requestable** field is only supported for customers enabled with the new Request Center. Otherwise, attempting to modify this field results in a 400 error.
+     * @summary Patch a specified Access Profile
+     * @param {string} id ID of the Access Profile to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    rejectAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    patchAccessProfile(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessProfile>>;
 };
 /**
- * AccessRequestApprovalsApi - factory interface
+ * AccessProfilesApi - factory interface
  * @export
  */
-export declare const AccessRequestApprovalsApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
+export declare const AccessProfilesApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
     /**
-     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Approves an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API creates an Access Profile. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a token with only ROLE_SUBADMIN or SOURCE_SUBADMIN authority must be associated with the Access Profile\'s Source. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create an Access Profile
+     * @param {AccessProfile} accessProfile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    approveAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: any): AxiosPromise<object>;
+    createAccessProfile(accessProfile: AccessProfile, axiosOptions?: any): AxiosPromise<AccessProfile>;
     /**
-     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Forwards an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
+     * This API initiates a bulk deletion of one or more Access Profiles.  By default, if any of the indicated Access Profiles are in use, no deletions will be performed and the **inUse** field of the response indicates the usages that must be removed first. If the request field **bestEffortOnly** is **true**, however, usages are reported in the **inUse** response field but all other indicated Access Profiles will be deleted.  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to delete Access Profiles which are associated with Sources they are able to administer.
+     * @summary Delete Access Profile(s)
+     * @param {AccessProfileBulkDeleteRequest} accessProfileBulkDeleteRequest
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    forwardAccessRequest(approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: any): AxiosPromise<object>;
+    deleteAccessProfilesInBulk(accessProfileBulkDeleteRequest: AccessProfileBulkDeleteRequest, axiosOptions?: any): AxiosPromise<AccessProfileBulkDeleteResponse>;
     /**
-     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Get the number of access-requests-approvals
-     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * This API returns an Access Profile by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary Get an Access Profile
+     * @param {string} id ID of the Access Profile
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    getAccessRequestApprovalSummary(ownerId?: string, fromDate?: string, axiosOptions?: any): AxiosPromise<ApprovalSummary>;
+    getAccessProfile(id: string, axiosOptions?: any): AxiosPromise<AccessProfile>;
     /**
-     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
-     * @summary Completed Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * This API lists the Entitlements associated with a given Access Profile  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a token with SOURCE_SUBADMIN authority must have access to the Source associated with the given Access Profile
+     * @summary List Access Profile\'s Entitlements
+     * @param {string} id ID of the containing Access Profile
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following Entitlement fields and operators: **id**: *eq, in*  **name**: *eq, sw*  **attribute**: *eq, sw*  **value**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, attribute, value, created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listCompletedApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<CompletedApproval>>;
+    getAccessProfileEntitlements(id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<Entitlement>>;
     /**
-     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Pending Access Request Approvals List
-     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * This API returns a list of Access Profiles.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary List Access Profiles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN or SOURCE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID.  A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **name**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **requestable**: *eq*  **source.id**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Access Profiles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Access Profiles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listPendingApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<PendingApproval>>;
+    listAccessProfiles(forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: any): AxiosPromise<Array<AccessProfile>>;
     /**
-     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
-     * @summary Rejects an access request approval.
-     * @param {string} approvalId The id of the approval.
-     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * This API updates an existing Access Profile. The following fields are patchable: **name**, **description**, **enabled**, **owner**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments**, **entitlements**, **provisioningCriteria** A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to patch Access Profiles which are associated with Sources they are able to administer. >  The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.  > You can only add or replace **entitlements** that exist on the source that the access profile is attached to. You can use the **list entitlements** endpoint with the **filters** query parameter to get a list of available entitlements on the access profile\'s source.  >  Patching the value of the **requestable** field is only supported for customers enabled with the new Request Center. Otherwise, attempting to modify this field results in a 400 error.
+     * @summary Patch a specified Access Profile
+     * @param {string} id ID of the Access Profile to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    rejectAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: any): AxiosPromise<object>;
+    patchAccessProfile(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: any): AxiosPromise<AccessProfile>;
 };
 /**
- * Request parameters for approveAccessRequest operation in AccessRequestApprovalsApi.
+ * Request parameters for createAccessProfile operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiApproveAccessRequestRequest
+ * @interface AccessProfilesApiCreateAccessProfileRequest
  */
-export interface AccessRequestApprovalsApiApproveAccessRequestRequest {
-    /**
-     * The id of the approval.
-     * @type {string}
-     * @memberof AccessRequestApprovalsApiApproveAccessRequest
-     */
-    readonly approvalId: string;
+export interface AccessProfilesApiCreateAccessProfileRequest {
     /**
-     * Reviewer\&#39;s comment.
-     * @type {CommentDto}
-     * @memberof AccessRequestApprovalsApiApproveAccessRequest
+     *
+     * @type {AccessProfile}
+     * @memberof AccessProfilesApiCreateAccessProfile
      */
-    readonly commentDto?: CommentDto;
+    readonly accessProfile: AccessProfile;
 }
 /**
- * Request parameters for forwardAccessRequest operation in AccessRequestApprovalsApi.
+ * Request parameters for deleteAccessProfilesInBulk operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiForwardAccessRequestRequest
+ * @interface AccessProfilesApiDeleteAccessProfilesInBulkRequest
  */
-export interface AccessRequestApprovalsApiForwardAccessRequestRequest {
-    /**
-     * The id of the approval.
-     * @type {string}
-     * @memberof AccessRequestApprovalsApiForwardAccessRequest
-     */
-    readonly approvalId: string;
+export interface AccessProfilesApiDeleteAccessProfilesInBulkRequest {
     /**
-     * Information about the forwarded approval.
-     * @type {ForwardApprovalDto}
-     * @memberof AccessRequestApprovalsApiForwardAccessRequest
+     *
+     * @type {AccessProfileBulkDeleteRequest}
+     * @memberof AccessProfilesApiDeleteAccessProfilesInBulk
      */
-    readonly forwardApprovalDto: ForwardApprovalDto;
+    readonly accessProfileBulkDeleteRequest: AccessProfileBulkDeleteRequest;
 }
 /**
- * Request parameters for getAccessRequestApprovalSummary operation in AccessRequestApprovalsApi.
+ * Request parameters for getAccessProfile operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest
+ * @interface AccessProfilesApiGetAccessProfileRequest
  */
-export interface AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest {
-    /**
-     * The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
-     * @type {string}
-     * @memberof AccessRequestApprovalsApiGetAccessRequestApprovalSummary
-     */
-    readonly ownerId?: string;
+export interface AccessProfilesApiGetAccessProfileRequest {
     /**
-     * From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * ID of the Access Profile
      * @type {string}
-     * @memberof AccessRequestApprovalsApiGetAccessRequestApprovalSummary
+     * @memberof AccessProfilesApiGetAccessProfile
      */
-    readonly fromDate?: string;
+    readonly id: string;
 }
 /**
- * Request parameters for listCompletedApprovals operation in AccessRequestApprovalsApi.
+ * Request parameters for getAccessProfileEntitlements operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiListCompletedApprovalsRequest
+ * @interface AccessProfilesApiGetAccessProfileEntitlementsRequest
  */
-export interface AccessRequestApprovalsApiListCompletedApprovalsRequest {
+export interface AccessProfilesApiGetAccessProfileEntitlementsRequest {
     /**
-     * If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * ID of the containing Access Profile
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
-    readonly ownerId?: string;
+    readonly id: string;
     /**
      * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {number}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
     readonly limit?: number;
     /**
      * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {number}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
     readonly offset?: number;
     /**
      * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {boolean}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
     readonly count?: boolean;
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following Entitlement fields and operators: **id**: *eq, in*  **name**: *eq, sw*  **attribute**: *eq, sw*  **value**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **source.id**: *eq, in*
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
     readonly filters?: string;
     /**
-     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, attribute, value, created, modified**
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     * @memberof AccessProfilesApiGetAccessProfileEntitlements
      */
     readonly sorters?: string;
 }
 /**
- * Request parameters for listPendingApprovals operation in AccessRequestApprovalsApi.
+ * Request parameters for listAccessProfiles operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiListPendingApprovalsRequest
+ * @interface AccessProfilesApiListAccessProfilesRequest
  */
-export interface AccessRequestApprovalsApiListPendingApprovalsRequest {
+export interface AccessProfilesApiListAccessProfilesRequest {
     /**
-     * If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN or SOURCE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID.  A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
-    readonly ownerId?: string;
+    readonly forSubadmin?: string;
     /**
-     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {number}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
     readonly limit?: number;
     /**
      * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {number}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
     readonly offset?: number;
     /**
      * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @type {boolean}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
     readonly count?: boolean;
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **name**: *eq, sw*  **created, modified**: *gt, lt, ge, le*  **owner.id**: *eq, in*  **requestable**: *eq*  **source.id**: *eq, in*
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
     readonly filters?: string;
     /**
-     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **name, created, modified**
      * @type {string}
-     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     * @memberof AccessProfilesApiListAccessProfiles
      */
     readonly sorters?: string;
+    /**
+     * If present and not empty, additionally filters Access Profiles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @type {string}
+     * @memberof AccessProfilesApiListAccessProfiles
+     */
+    readonly forSegmentIds?: string;
+    /**
+     * Whether or not the response list should contain unsegmented Access Profiles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
+     * @type {boolean}
+     * @memberof AccessProfilesApiListAccessProfiles
+     */
+    readonly includeUnsegmented?: boolean;
 }
 /**
- * Request parameters for rejectAccessRequest operation in AccessRequestApprovalsApi.
+ * Request parameters for patchAccessProfile operation in AccessProfilesApi.
  * @export
- * @interface AccessRequestApprovalsApiRejectAccessRequestRequest
+ * @interface AccessProfilesApiPatchAccessProfileRequest
  */
-export interface AccessRequestApprovalsApiRejectAccessRequestRequest {
+export interface AccessProfilesApiPatchAccessProfileRequest {
     /**
-     * The id of the approval.
+     * ID of the Access Profile to patch
      * @type {string}
-     * @memberof AccessRequestApprovalsApiRejectAccessRequest
+     * @memberof AccessProfilesApiPatchAccessProfile
      */
-    readonly approvalId: string;
+    readonly id: string;
     /**
-     * Reviewer\&#39;s comment.
-     * @type {CommentDto}
-     * @memberof AccessRequestApprovalsApiRejectAccessRequest
+     *
+     * @type {Array<JsonPatchOperation>}
+     * @memberof AccessProfilesApiPatchAccessProfile
      */
-    readonly commentDto?: CommentDto;
+    readonly jsonPatchOperation: Array<JsonPatchOperation>;
 }
 /**
- * AccessRequestApprovalsApi - object-oriented interface
+ * AccessProfilesApi - object-oriented interface
  * @export
- * @class AccessRequestApprovalsApi
+ * @class AccessProfilesApi
  * @extends {BaseAPI}
  */
-export declare class AccessRequestApprovalsApi extends BaseAPI {
+export declare class AccessProfilesApi extends BaseAPI {
     /**
-     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Approves an access request approval.
-     * @param {AccessRequestApprovalsApiApproveAccessRequestRequest} requestParameters Request parameters.
+     * This API creates an Access Profile. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a token with only ROLE_SUBADMIN or SOURCE_SUBADMIN authority must be associated with the Access Profile\'s Source. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create an Access Profile
+     * @param {AccessProfilesApiCreateAccessProfileRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    approveAccessRequest(requestParameters: AccessRequestApprovalsApiApproveAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+    createAccessProfile(requestParameters: AccessProfilesApiCreateAccessProfileRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<AccessProfile, any>>;
     /**
-     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
-     * @summary Forwards an access request approval.
-     * @param {AccessRequestApprovalsApiForwardAccessRequestRequest} requestParameters Request parameters.
+     * This API initiates a bulk deletion of one or more Access Profiles.  By default, if any of the indicated Access Profiles are in use, no deletions will be performed and the **inUse** field of the response indicates the usages that must be removed first. If the request field **bestEffortOnly** is **true**, however, usages are reported in the **inUse** response field but all other indicated Access Profiles will be deleted.  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to delete Access Profiles which are associated with Sources they are able to administer.
+     * @summary Delete Access Profile(s)
+     * @param {AccessProfilesApiDeleteAccessProfilesInBulkRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    forwardAccessRequest(requestParameters: AccessRequestApprovalsApiForwardAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+    deleteAccessProfilesInBulk(requestParameters: AccessProfilesApiDeleteAccessProfilesInBulkRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<AccessProfileBulkDeleteResponse, any>>;
     /**
-     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Get the number of access-requests-approvals
-     * @param {AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest} requestParameters Request parameters.
+     * This API returns an Access Profile by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary Get an Access Profile
+     * @param {AccessProfilesApiGetAccessProfileRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    getAccessRequestApprovalSummary(requestParameters?: AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<ApprovalSummary, any>>;
+    getAccessProfile(requestParameters: AccessProfilesApiGetAccessProfileRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<AccessProfile, any>>;
     /**
-     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
-     * @summary Completed Access Request Approvals List
-     * @param {AccessRequestApprovalsApiListCompletedApprovalsRequest} requestParameters Request parameters.
+     * This API lists the Entitlements associated with a given Access Profile  A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a token with SOURCE_SUBADMIN authority must have access to the Source associated with the given Access Profile
+     * @summary List Access Profile\'s Entitlements
+     * @param {AccessProfilesApiGetAccessProfileEntitlementsRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    listCompletedApprovals(requestParameters?: AccessRequestApprovalsApiListCompletedApprovalsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<CompletedApproval[], any>>;
+    getAccessProfileEntitlements(requestParameters: AccessProfilesApiGetAccessProfileEntitlementsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Entitlement[], any>>;
     /**
-     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
-     * @summary Pending Access Request Approvals List
-     * @param {AccessRequestApprovalsApiListPendingApprovalsRequest} requestParameters Request parameters.
+     * This API returns a list of Access Profiles.  A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
+     * @summary List Access Profiles
+     * @param {AccessProfilesApiListAccessProfilesRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    listPendingApprovals(requestParameters?: AccessRequestApprovalsApiListPendingApprovalsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PendingApproval[], any>>;
+    listAccessProfiles(requestParameters?: AccessProfilesApiListAccessProfilesRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<AccessProfile[], any>>;
     /**
-     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
-     * @summary Rejects an access request approval.
-     * @param {AccessRequestApprovalsApiRejectAccessRequestRequest} requestParameters Request parameters.
+     * This API updates an existing Access Profile. The following fields are patchable: **name**, **description**, **enabled**, **owner**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments**, **entitlements**, **provisioningCriteria** A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to patch Access Profiles which are associated with Sources they are able to administer. >  The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.  > You can only add or replace **entitlements** that exist on the source that the access profile is attached to. You can use the **list entitlements** endpoint with the **filters** query parameter to get a list of available entitlements on the access profile\'s source.  >  Patching the value of the **requestable** field is only supported for customers enabled with the new Request Center. Otherwise, attempting to modify this field results in a 400 error.
+     * @summary Patch a specified Access Profile
+     * @param {AccessProfilesApiPatchAccessProfileRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof AccessRequestApprovalsApi
+     * @memberof AccessProfilesApi
      */
-    rejectAccessRequest(requestParameters: AccessRequestApprovalsApiRejectAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+    patchAccessProfile(requestParameters: AccessProfilesApiPatchAccessProfileRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<AccessProfile, any>>;
 }
 /**
- * AccessRequestsApi - axios parameter creator
+ * AccessRequestApprovalsApi - axios parameter creator
  * @export
  */
-export declare const AccessRequestsApiAxiosParamCreator: (configuration?: Configuration) => {
+export declare const AccessRequestApprovalsApiAxiosParamCreator: (configuration?: Configuration) => {
     /**
-     * This API endpoint cancels a pending access request. An access request can be cancelled only if it has not passed the approval step. Any token with ORG_ADMIN authority or token of the user who originally requested the access request is required to cancel it.
-     * @summary Cancel Access Request
-     * @param {CancelAccessRequest} cancelAccessRequest
+     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Approves an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    cancelAccessRequest: (cancelAccessRequest: CancelAccessRequest, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    approveAccessRequest: (approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone. * Roles and Access Profiles can be requested for revocation. Revoke request for entitlements are not supported currently.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
-     * @summary Submit an Access Request
-     * @param {AccessRequest} accessRequest
+     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Forwards an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    createAccessRequest: (accessRequest: AccessRequest, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    forwardAccessRequest: (approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint returns the current access-request configuration.
-     * @summary Get Access Request Configuration
+     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Get the number of access-requests-approvals
+     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    getAccessRequestConfig: (axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    getAccessRequestApprovalSummary: (ownerId?: string, fromDate?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * The Access Request Status API returns a list of access request statuses based on the specified query parameters. Any token with any authority can request their own status. A token with ORG_ADMIN authority is required to call this API to get a list of statuses for other users.
-     * @summary Access Request Status
-     * @param {string} [requestedFor] Filter the results by the identity for which the requests were made. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
-     * @param {string} [requestedBy] Filter the results by the identity that made the requests. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
-     * @param {string} [regardingIdentity] Filter the results by the specified identity which is either the requester or target of the requests. *me* indicates the current user. Mutually exclusive with *requested-for* and *requested-by*.
-     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.
-     * @param {number} [limit] Max number of results to return.
-     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. Defaults to 0 if not specified.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **accountActivityItemId**: *eq, in*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified, accountActivityItemId**
+     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
+     * @summary Completed Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listAccessRequestStatus: (requestedFor?: string, requestedBy?: string, regardingIdentity?: string, count?: boolean, limit?: number, offset?: number, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    listCompletedApprovals: (ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * This endpoint replaces the current access-request configuration. A token with ORG_ADMIN authority is required to call this API.
-     * @summary Update Access Request Configuration
-     * @param {AccessRequestConfig} accessRequestConfig
+     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Pending Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    updateAccessRequestConfig: (accessRequestConfig: AccessRequestConfig, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    listPendingApprovals: (ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
+     * @summary Rejects an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    rejectAccessRequest: (approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
 };
 /**
- * AccessRequestsApi - functional programming interface
+ * AccessRequestApprovalsApi - functional programming interface
  * @export
  */
-export declare const AccessRequestsApiFp: (configuration?: Configuration) => {
+export declare const AccessRequestApprovalsApiFp: (configuration?: Configuration) => {
     /**
-     * This API endpoint cancels a pending access request. An access request can be cancelled only if it has not passed the approval step. Any token with ORG_ADMIN authority or token of the user who originally requested the access request is required to cancel it.
-     * @summary Cancel Access Request
-     * @param {CancelAccessRequest} cancelAccessRequest
+     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Approves an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    cancelAccessRequest(cancelAccessRequest: CancelAccessRequest, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    approveAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
     /**
-     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone. * Roles and Access Profiles can be requested for revocation. Revoke request for entitlements are not supported currently.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
-     * @summary Submit an Access Request
-     * @param {AccessRequest} accessRequest
+     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Forwards an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    createAccessRequest(accessRequest: AccessRequest, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    forwardAccessRequest(approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
     /**
-     * This endpoint returns the current access-request configuration.
-     * @summary Get Access Request Configuration
+     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Get the number of access-requests-approvals
+     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    getAccessRequestConfig(axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessRequestConfig>>;
+    getAccessRequestApprovalSummary(ownerId?: string, fromDate?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<ApprovalSummary>>;
     /**
-     * The Access Request Status API returns a list of access request statuses based on the specified query parameters. Any token with any authority can request their own status. A token with ORG_ADMIN authority is required to call this API to get a list of statuses for other users.
-     * @summary Access Request Status
-     * @param {string} [requestedFor] Filter the results by the identity for which the requests were made. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
-     * @param {string} [requestedBy] Filter the results by the identity that made the requests. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
-     * @param {string} [regardingIdentity] Filter the results by the specified identity which is either the requester or target of the requests. *me* indicates the current user. Mutually exclusive with *requested-for* and *requested-by*.
-     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.
-     * @param {number} [limit] Max number of results to return.
-     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. Defaults to 0 if not specified.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **accountActivityItemId**: *eq, in*
-     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified, accountActivityItemId**
+     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
+     * @summary Completed Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
-    listAccessRequestStatus(requestedFor?: string, requestedBy?: string, regardingIdentity?: string, count?: boolean, limit?: number, offset?: number, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<RequestedItemStatus>>>;
+    listCompletedApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<CompletedApproval>>>;
     /**
-     * This endpoint replaces the current access-request configuration. A token with ORG_ADMIN authority is required to call this API.
+     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Pending Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listPendingApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<PendingApproval>>>;
+    /**
+     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
+     * @summary Rejects an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    rejectAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+};
+/**
+ * AccessRequestApprovalsApi - factory interface
+ * @export
+ */
+export declare const AccessRequestApprovalsApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
+    /**
+     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Approves an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    approveAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: any): AxiosPromise<object>;
+    /**
+     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Forwards an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {ForwardApprovalDto} forwardApprovalDto Information about the forwarded approval.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    forwardAccessRequest(approvalId: string, forwardApprovalDto: ForwardApprovalDto, axiosOptions?: any): AxiosPromise<object>;
+    /**
+     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Get the number of access-requests-approvals
+     * @param {string} [ownerId] The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {string} [fromDate] From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getAccessRequestApprovalSummary(ownerId?: string, fromDate?: string, axiosOptions?: any): AxiosPromise<ApprovalSummary>;
+    /**
+     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
+     * @summary Completed Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listCompletedApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<CompletedApproval>>;
+    /**
+     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Pending Access Request Approvals List
+     * @param {string} [ownerId] If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listPendingApprovals(ownerId?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<PendingApproval>>;
+    /**
+     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
+     * @summary Rejects an access request approval.
+     * @param {string} approvalId The id of the approval.
+     * @param {CommentDto} [commentDto] Reviewer\&#39;s comment.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    rejectAccessRequest(approvalId: string, commentDto?: CommentDto, axiosOptions?: any): AxiosPromise<object>;
+};
+/**
+ * Request parameters for approveAccessRequest operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiApproveAccessRequestRequest
+ */
+export interface AccessRequestApprovalsApiApproveAccessRequestRequest {
+    /**
+     * The id of the approval.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiApproveAccessRequest
+     */
+    readonly approvalId: string;
+    /**
+     * Reviewer\&#39;s comment.
+     * @type {CommentDto}
+     * @memberof AccessRequestApprovalsApiApproveAccessRequest
+     */
+    readonly commentDto?: CommentDto;
+}
+/**
+ * Request parameters for forwardAccessRequest operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiForwardAccessRequestRequest
+ */
+export interface AccessRequestApprovalsApiForwardAccessRequestRequest {
+    /**
+     * The id of the approval.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiForwardAccessRequest
+     */
+    readonly approvalId: string;
+    /**
+     * Information about the forwarded approval.
+     * @type {ForwardApprovalDto}
+     * @memberof AccessRequestApprovalsApiForwardAccessRequest
+     */
+    readonly forwardApprovalDto: ForwardApprovalDto;
+}
+/**
+ * Request parameters for getAccessRequestApprovalSummary operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest
+ */
+export interface AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest {
+    /**
+     * The id of the owner or approver identity of the approvals. If present, the value returns approval summary for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN user can also fetch all the approvals in the org, when owner-id is not used.    * Non ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiGetAccessRequestApprovalSummary
+     */
+    readonly ownerId?: string;
+    /**
+     * From date is the date and time from which the results will be shown. It should be in a valid ISO-8601 format
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiGetAccessRequestApprovalSummary
+     */
+    readonly fromDate?: string;
+}
+/**
+ * Request parameters for listCompletedApprovals operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiListCompletedApprovalsRequest
+ */
+export interface AccessRequestApprovalsApiListCompletedApprovalsRequest {
+    /**
+     * If present, the value returns only completed approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly ownerId?: string;
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly limit?: number;
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly offset?: number;
+    /**
+     * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {boolean}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly count?: boolean;
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly filters?: string;
+    /**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListCompletedApprovals
+     */
+    readonly sorters?: string;
+}
+/**
+ * Request parameters for listPendingApprovals operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiListPendingApprovalsRequest
+ */
+export interface AccessRequestApprovalsApiListPendingApprovalsRequest {
+    /**
+     * If present, the value returns only pending approvals for the specified identity.    * ORG_ADMIN users can call this with any identity ID value.    * ORG_ADMIN users can also fetch all the approvals in the org, when owner-id is not used.    * Non-ORG_ADMIN users can only specify *me* or pass their own identity ID value.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly ownerId?: string;
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly limit?: number;
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly offset?: number;
+    /**
+     * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {boolean}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly count?: boolean;
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **requestedFor.id**: *eq, in*  **modified**: *gt, lt, ge, le*
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly filters?: string;
+    /**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified**
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiListPendingApprovals
+     */
+    readonly sorters?: string;
+}
+/**
+ * Request parameters for rejectAccessRequest operation in AccessRequestApprovalsApi.
+ * @export
+ * @interface AccessRequestApprovalsApiRejectAccessRequestRequest
+ */
+export interface AccessRequestApprovalsApiRejectAccessRequestRequest {
+    /**
+     * The id of the approval.
+     * @type {string}
+     * @memberof AccessRequestApprovalsApiRejectAccessRequest
+     */
+    readonly approvalId: string;
+    /**
+     * Reviewer\&#39;s comment.
+     * @type {CommentDto}
+     * @memberof AccessRequestApprovalsApiRejectAccessRequest
+     */
+    readonly commentDto?: CommentDto;
+}
+/**
+ * AccessRequestApprovalsApi - object-oriented interface
+ * @export
+ * @class AccessRequestApprovalsApi
+ * @extends {BaseAPI}
+ */
+export declare class AccessRequestApprovalsApi extends BaseAPI {
+    /**
+     * This endpoint approves an access request approval. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Approves an access request approval.
+     * @param {AccessRequestApprovalsApiApproveAccessRequestRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    approveAccessRequest(requestParameters: AccessRequestApprovalsApiApproveAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+    /**
+     * This endpoint forwards an access request approval to a new owner. Only the owner of the approval and ORG_ADMIN users are allowed to perform this action.
+     * @summary Forwards an access request approval.
+     * @param {AccessRequestApprovalsApiForwardAccessRequestRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    forwardAccessRequest(requestParameters: AccessRequestApprovalsApiForwardAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+    /**
+     * This endpoint returns the number of pending, approved and rejected access requests approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Get the number of access-requests-approvals
+     * @param {AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    getAccessRequestApprovalSummary(requestParameters?: AccessRequestApprovalsApiGetAccessRequestApprovalSummaryRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<ApprovalSummary, any>>;
+    /**
+     * This endpoint returns list of completed approvals. See *owner-id* query parameter below for authorization info.
+     * @summary Completed Access Request Approvals List
+     * @param {AccessRequestApprovalsApiListCompletedApprovalsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    listCompletedApprovals(requestParameters?: AccessRequestApprovalsApiListCompletedApprovalsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<CompletedApproval[], any>>;
+    /**
+     * This endpoint returns a list of pending approvals. See \"owner-id\" query parameter below for authorization info.
+     * @summary Pending Access Request Approvals List
+     * @param {AccessRequestApprovalsApiListPendingApprovalsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    listPendingApprovals(requestParameters?: AccessRequestApprovalsApiListPendingApprovalsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PendingApproval[], any>>;
+    /**
+     * This endpoint rejects an access request approval. Only the owner of the approval and admin users are allowed to perform this action.
+     * @summary Rejects an access request approval.
+     * @param {AccessRequestApprovalsApiRejectAccessRequestRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof AccessRequestApprovalsApi
+     */
+    rejectAccessRequest(requestParameters: AccessRequestApprovalsApiRejectAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
+}
+/**
+ * AccessRequestsApi - axios parameter creator
+ * @export
+ */
+export declare const AccessRequestsApiAxiosParamCreator: (configuration?: Configuration) => {
+    /**
+     * This API endpoint cancels a pending access request. An access request can be cancelled only if it has not passed the approval step. Any token with ORG_ADMIN authority or token of the user who originally requested the access request is required to cancel it.
+     * @summary Cancel Access Request
+     * @param {CancelAccessRequest} cancelAccessRequest
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    cancelAccessRequest: (cancelAccessRequest: CancelAccessRequest, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time only for Roles and Access Profiles. Entitlements are currently unsupported for removeDate. * Roles, Access Profiles, and Entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * [Roles, Access Profiles] RemoveData can be specified only if access don\'t have a sunset date. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
+     * @summary Submit an Access Request
+     * @param {AccessRequest} accessRequest
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createAccessRequest: (accessRequest: AccessRequest, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This endpoint returns the current access-request configuration.
+     * @summary Get Access Request Configuration
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getAccessRequestConfig: (axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * The Access Request Status API returns a list of access request statuses based on the specified query parameters. Any token with any authority can request their own status. A token with ORG_ADMIN authority is required to call this API to get a list of statuses for other users.
+     * @summary Access Request Status
+     * @param {string} [requestedFor] Filter the results by the identity for which the requests were made. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
+     * @param {string} [requestedBy] Filter the results by the identity that made the requests. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
+     * @param {string} [regardingIdentity] Filter the results by the specified identity which is either the requester or target of the requests. *me* indicates the current user. Mutually exclusive with *requested-for* and *requested-by*.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.
+     * @param {number} [limit] Max number of results to return.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. Defaults to 0 if not specified.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **accountActivityItemId**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified, accountActivityItemId**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listAccessRequestStatus: (requestedFor?: string, requestedBy?: string, regardingIdentity?: string, count?: boolean, limit?: number, offset?: number, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This endpoint replaces the current access-request configuration. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Access Request Configuration
+     * @param {AccessRequestConfig} accessRequestConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updateAccessRequestConfig: (accessRequestConfig: AccessRequestConfig, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+};
+/**
+ * AccessRequestsApi - functional programming interface
+ * @export
+ */
+export declare const AccessRequestsApiFp: (configuration?: Configuration) => {
+    /**
+     * This API endpoint cancels a pending access request. An access request can be cancelled only if it has not passed the approval step. Any token with ORG_ADMIN authority or token of the user who originally requested the access request is required to cancel it.
+     * @summary Cancel Access Request
+     * @param {CancelAccessRequest} cancelAccessRequest
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    cancelAccessRequest(cancelAccessRequest: CancelAccessRequest, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    /**
+     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time only for Roles and Access Profiles. Entitlements are currently unsupported for removeDate. * Roles, Access Profiles, and Entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * [Roles, Access Profiles] RemoveData can be specified only if access don\'t have a sunset date. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
+     * @summary Submit an Access Request
+     * @param {AccessRequest} accessRequest
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createAccessRequest(accessRequest: AccessRequest, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
+    /**
+     * This endpoint returns the current access-request configuration.
+     * @summary Get Access Request Configuration
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getAccessRequestConfig(axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccessRequestConfig>>;
+    /**
+     * The Access Request Status API returns a list of access request statuses based on the specified query parameters. Any token with any authority can request their own status. A token with ORG_ADMIN authority is required to call this API to get a list of statuses for other users.
+     * @summary Access Request Status
+     * @param {string} [requestedFor] Filter the results by the identity for which the requests were made. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
+     * @param {string} [requestedBy] Filter the results by the identity that made the requests. *me* indicates the current user. Mutually exclusive with *regarding-identity*.
+     * @param {string} [regardingIdentity] Filter the results by the specified identity which is either the requester or target of the requests. *me* indicates the current user. Mutually exclusive with *requested-for* and *requested-by*.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.
+     * @param {number} [limit] Max number of results to return.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. Defaults to 0 if not specified.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **accountActivityItemId**: *eq, in*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **created, modified, accountActivityItemId**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listAccessRequestStatus(requestedFor?: string, requestedBy?: string, regardingIdentity?: string, count?: boolean, limit?: number, offset?: number, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<RequestedItemStatus>>>;
+    /**
+     * This endpoint replaces the current access-request configuration. A token with ORG_ADMIN authority is required to call this API.
      * @summary Update Access Request Configuration
      * @param {AccessRequestConfig} accessRequestConfig
      * @param {*} [axiosOptions] Override http request option.
@@ -14501,7 +15932,7 @@ export declare const AccessRequestsApiFactory: (configuration?: Configuration, b
      */
     cancelAccessRequest(cancelAccessRequest: CancelAccessRequest, axiosOptions?: any): AxiosPromise<object>;
     /**
-     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone. * Roles and Access Profiles can be requested for revocation. Revoke request for entitlements are not supported currently.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
+     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time only for Roles and Access Profiles. Entitlements are currently unsupported for removeDate. * Roles, Access Profiles, and Entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * [Roles, Access Profiles] RemoveData can be specified only if access don\'t have a sunset date. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
      * @summary Submit an Access Request
      * @param {AccessRequest} accessRequest
      * @param {*} [axiosOptions] Override http request option.
@@ -14650,7 +16081,7 @@ export declare class AccessRequestsApi extends BaseAPI {
      */
     cancelAccessRequest(requestParameters: AccessRequestsApiCancelAccessRequestRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
     /**
-     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone. * Roles and Access Profiles can be requested for revocation. Revoke request for entitlements are not supported currently.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
+     * This submits the access request into IdentityNow, where it will follow any IdentityNow approval processes.  Access requests are processed asynchronously by IdentityNow.  A success response from this endpoint means the request has been submitted to IDN and is queued for processing.  Because this endpoint is asynchronous, it will not return an error if you submit duplicate access requests in quick succession, or you submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request.  This can be accomplished by using the [access request status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [pending access request approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) endpoints.  You can also use the [search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items that an identity has before submitting an access request to ensure you are not requesting access that is already granted.  There are two types of access request:  __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users, see \'/beta/access-request-config\' endpoint for request configuration options.   * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, Access Profiles and Entitlements can be requested. * While requesting entitlements, maximum of 25 entitlements and 10 recipients are allowed in a request.   __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If removeDate is specified, then the access will be removed on that date and time only for Roles and Access Profiles. Entitlements are currently unsupported for removeDate. * Roles, Access Profiles, and Entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * [Roles, Access Profiles] RemoveData can be specified only if access don\'t have a sunset date. * Allows a manager to request to revoke access for direct employees. A token with ORG_ADMIN authority can also request to revoke access from anyone.  NOTE: There is no indication to the approver in the IdentityNow UI that the approval request is for a revoke action. Take this into consideration when calling this API.  A token with API authority cannot be used to call this endpoint.
      * @summary Submit an Access Request
      * @param {AccessRequestsApiCreateAccessRequestRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
@@ -15510,7 +16941,7 @@ export declare const CertificationSummariesApiAxiosParamCreator: (configuration?
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
      * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **access.name**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
@@ -15520,7 +16951,7 @@ export declare const CertificationSummariesApiAxiosParamCreator: (configuration?
      * This API returns a summary of the decisions made on an identity campaign certification. The decisions are summarized by type. A token with ORG_ADMIN or CERT_ADMIN authority is required to call this API. Reviewers for this certification can also call this API.
      * @summary Summary of Certification Decisions
      * @param {string} id The certification ID
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
@@ -15561,7 +16992,7 @@ export declare const CertificationSummariesApiFp: (configuration?: Configuration
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
      * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **access.name**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
@@ -15571,7 +17002,7 @@ export declare const CertificationSummariesApiFp: (configuration?: Configuration
      * This API returns a summary of the decisions made on an identity campaign certification. The decisions are summarized by type. A token with ORG_ADMIN or CERT_ADMIN authority is required to call this API. Reviewers for this certification can also call this API.
      * @summary Summary of Certification Decisions
      * @param {string} id The certification ID
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
@@ -15612,7 +17043,7 @@ export declare const CertificationSummariesApiFactory: (configuration?: Configur
      * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
      * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
      * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **access.name**
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
@@ -15622,7 +17053,7 @@ export declare const CertificationSummariesApiFactory: (configuration?: Configur
      * This API returns a summary of the decisions made on an identity campaign certification. The decisions are summarized by type. A token with ORG_ADMIN or CERT_ADMIN authority is required to call this API. Reviewers for this certification can also call this API.
      * @summary Summary of Certification Decisions
      * @param {string} id The certification ID
-     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      */
@@ -15687,7 +17118,7 @@ export interface CertificationSummariesApiGetIdentityAccessSummariesRequest {
      */
     readonly count?: boolean;
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **completed**: *eq, ne*  **access.id**: *eq, in*  **access.name**: *eq, sw*  **entitlement.sourceName**: *eq, sw*  **accessProfile.sourceName**: *eq, sw*
      * @type {string}
      * @memberof CertificationSummariesApiGetIdentityAccessSummaries
      */
@@ -15712,7 +17143,7 @@ export interface CertificationSummariesApiGetIdentityDecisionSummaryRequest {
      */
     readonly id: string;
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://community.sailpoint.com/t5/IdentityNow-Wiki-API-Standard-Collection-Parameters/ta-p/156407)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **identitySummary.id**: *eq, in*
      * @type {string}
      * @memberof CertificationSummariesApiGetIdentityDecisionSummary
      */
@@ -18932,96 +20363,344 @@ export interface OAuthClientsApiDeleteOauthClientRequest {
  */
 export interface OAuthClientsApiGetOauthClientRequest {
     /**
-     * The OAuth client id
-     * @type {string}
-     * @memberof OAuthClientsApiGetOauthClient
+     * The OAuth client id
+     * @type {string}
+     * @memberof OAuthClientsApiGetOauthClient
+     */
+    readonly id: string;
+}
+/**
+ * Request parameters for listOauthClients operation in OAuthClientsApi.
+ * @export
+ * @interface OAuthClientsApiListOauthClientsRequest
+ */
+export interface OAuthClientsApiListOauthClientsRequest {
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **lastUsed**: *le, isnull*
+     * @type {string}
+     * @memberof OAuthClientsApiListOauthClients
+     */
+    readonly filters?: string;
+}
+/**
+ * Request parameters for patchOauthClient operation in OAuthClientsApi.
+ * @export
+ * @interface OAuthClientsApiPatchOauthClientRequest
+ */
+export interface OAuthClientsApiPatchOauthClientRequest {
+    /**
+     * The OAuth client id
+     * @type {string}
+     * @memberof OAuthClientsApiPatchOauthClient
+     */
+    readonly id: string;
+    /**
+     * A list of OAuth client update operations according to the [JSON Patch](https://tools.ietf.org/html/rfc6902) standard.  The following fields are patchable: * tenant * businessName * homepageUrl * name * description * accessTokenValiditySeconds * refreshTokenValiditySeconds * redirectUris * grantTypes * accessType * enabled * strongAuthSupported * claimsSupported
+     * @type {Array<JsonPatchOperation>}
+     * @memberof OAuthClientsApiPatchOauthClient
+     */
+    readonly jsonPatchOperation: Array<JsonPatchOperation>;
+}
+/**
+ * OAuthClientsApi - object-oriented interface
+ * @export
+ * @class OAuthClientsApi
+ * @extends {BaseAPI}
+ */
+export declare class OAuthClientsApi extends BaseAPI {
+    /**
+     * This creates an OAuth client.
+     * @summary Create OAuth Client
+     * @param {OAuthClientsApiCreateOauthClientRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof OAuthClientsApi
+     */
+    createOauthClient(requestParameters: OAuthClientsApiCreateOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<CreateOAuthClientResponse, any>>;
+    /**
+     * This deletes an OAuth client.
+     * @summary Delete OAuth Client
+     * @param {OAuthClientsApiDeleteOauthClientRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof OAuthClientsApi
+     */
+    deleteOauthClient(requestParameters: OAuthClientsApiDeleteOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<void, any>>;
+    /**
+     * This gets details of an OAuth client.
+     * @summary Get OAuth Client
+     * @param {OAuthClientsApiGetOauthClientRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof OAuthClientsApi
+     */
+    getOauthClient(requestParameters: OAuthClientsApiGetOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse, any>>;
+    /**
+     * This gets a list of OAuth clients.
+     * @summary List OAuth Clients
+     * @param {OAuthClientsApiListOauthClientsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof OAuthClientsApi
+     */
+    listOauthClients(requestParameters?: OAuthClientsApiListOauthClientsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse[], any>>;
+    /**
+     * This performs a targeted update to the field(s) of an OAuth client.
+     * @summary Patch OAuth Client
+     * @param {OAuthClientsApiPatchOauthClientRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof OAuthClientsApi
+     */
+    patchOauthClient(requestParameters: OAuthClientsApiPatchOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse, any>>;
+}
+/**
+ * PasswordConfigurationApi - axios parameter creator
+ * @export
+ */
+export declare const PasswordConfigurationApiAxiosParamCreator: (configuration?: Configuration) => {
+    /**
+     * This API creates the password org config. Unspecified fields will use default value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Create Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordOrgConfig: (passwordOrgConfig: PasswordOrgConfig, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API returns the password org config . Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:read\'
+     * @summary Get Password Org Config
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordOrgConfig: (axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API updates the password org config for specified fields. Other fields will keep original value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Update Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordOrgConfig: (passwordOrgConfig: PasswordOrgConfig, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+};
+/**
+ * PasswordConfigurationApi - functional programming interface
+ * @export
+ */
+export declare const PasswordConfigurationApiFp: (configuration?: Configuration) => {
+    /**
+     * This API creates the password org config. Unspecified fields will use default value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Create Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordOrgConfig(passwordOrgConfig: PasswordOrgConfig, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordOrgConfig>>;
+    /**
+     * This API returns the password org config . Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:read\'
+     * @summary Get Password Org Config
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordOrgConfig(axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordOrgConfig>>;
+    /**
+     * This API updates the password org config for specified fields. Other fields will keep original value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Update Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordOrgConfig(passwordOrgConfig: PasswordOrgConfig, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordOrgConfig>>;
+};
+/**
+ * PasswordConfigurationApi - factory interface
+ * @export
+ */
+export declare const PasswordConfigurationApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
+    /**
+     * This API creates the password org config. Unspecified fields will use default value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Create Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordOrgConfig(passwordOrgConfig: PasswordOrgConfig, axiosOptions?: any): AxiosPromise<PasswordOrgConfig>;
+    /**
+     * This API returns the password org config . Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:read\'
+     * @summary Get Password Org Config
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordOrgConfig(axiosOptions?: any): AxiosPromise<PasswordOrgConfig>;
+    /**
+     * This API updates the password org config for specified fields. Other fields will keep original value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Update Password Org Config
+     * @param {PasswordOrgConfig} passwordOrgConfig
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordOrgConfig(passwordOrgConfig: PasswordOrgConfig, axiosOptions?: any): AxiosPromise<PasswordOrgConfig>;
+};
+/**
+ * Request parameters for createPasswordOrgConfig operation in PasswordConfigurationApi.
+ * @export
+ * @interface PasswordConfigurationApiCreatePasswordOrgConfigRequest
+ */
+export interface PasswordConfigurationApiCreatePasswordOrgConfigRequest {
+    /**
+     *
+     * @type {PasswordOrgConfig}
+     * @memberof PasswordConfigurationApiCreatePasswordOrgConfig
+     */
+    readonly passwordOrgConfig: PasswordOrgConfig;
+}
+/**
+ * Request parameters for updatePasswordOrgConfig operation in PasswordConfigurationApi.
+ * @export
+ * @interface PasswordConfigurationApiUpdatePasswordOrgConfigRequest
+ */
+export interface PasswordConfigurationApiUpdatePasswordOrgConfigRequest {
+    /**
+     *
+     * @type {PasswordOrgConfig}
+     * @memberof PasswordConfigurationApiUpdatePasswordOrgConfig
+     */
+    readonly passwordOrgConfig: PasswordOrgConfig;
+}
+/**
+ * PasswordConfigurationApi - object-oriented interface
+ * @export
+ * @class PasswordConfigurationApi
+ * @extends {BaseAPI}
+ */
+export declare class PasswordConfigurationApi extends BaseAPI {
+    /**
+     * This API creates the password org config. Unspecified fields will use default value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Create Password Org Config
+     * @param {PasswordConfigurationApiCreatePasswordOrgConfigRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordConfigurationApi
+     */
+    createPasswordOrgConfig(requestParameters: PasswordConfigurationApiCreatePasswordOrgConfigRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordOrgConfig, any>>;
+    /**
+     * This API returns the password org config . Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:read\'
+     * @summary Get Password Org Config
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordConfigurationApi
+     */
+    getPasswordOrgConfig(axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordOrgConfig, any>>;
+    /**
+     * This API updates the password org config for specified fields. Other fields will keep original value. Requires ORG_ADMIN, API role or authorization scope of \'idn:password-org-config:write\'
+     * @summary Update Password Org Config
+     * @param {PasswordConfigurationApiUpdatePasswordOrgConfigRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordConfigurationApi
      */
-    readonly id: string;
+    updatePasswordOrgConfig(requestParameters: PasswordConfigurationApiUpdatePasswordOrgConfigRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordOrgConfig, any>>;
 }
 /**
- * Request parameters for listOauthClients operation in OAuthClientsApi.
+ * PasswordDictionaryApi - axios parameter creator
  * @export
- * @interface OAuthClientsApiListOauthClientsRequest
  */
-export interface OAuthClientsApiListOauthClientsRequest {
+export declare const PasswordDictionaryApiAxiosParamCreator: (configuration?: Configuration) => {
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **lastUsed**: *le, isnull*
-     * @type {string}
-     * @memberof OAuthClientsApiListOauthClients
+     * This gets password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Dictionary
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
      */
-    readonly filters?: string;
-}
+    getPasswordDictionary: (axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This updates password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Dictionary
+     * @param {any} [file]
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordDictionary: (file?: any, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+};
 /**
- * Request parameters for patchOauthClient operation in OAuthClientsApi.
+ * PasswordDictionaryApi - functional programming interface
  * @export
- * @interface OAuthClientsApiPatchOauthClientRequest
  */
-export interface OAuthClientsApiPatchOauthClientRequest {
+export declare const PasswordDictionaryApiFp: (configuration?: Configuration) => {
     /**
-     * The OAuth client id
-     * @type {string}
-     * @memberof OAuthClientsApiPatchOauthClient
+     * This gets password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Dictionary
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
      */
-    readonly id: string;
+    getPasswordDictionary(axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<string>>;
     /**
-     * A list of OAuth client update operations according to the [JSON Patch](https://tools.ietf.org/html/rfc6902) standard.  The following fields are patchable: * tenant * businessName * homepageUrl * name * description * accessTokenValiditySeconds * refreshTokenValiditySeconds * redirectUris * grantTypes * accessType * enabled * strongAuthSupported * claimsSupported
-     * @type {Array<JsonPatchOperation>}
-     * @memberof OAuthClientsApiPatchOauthClient
+     * This updates password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Dictionary
+     * @param {any} [file]
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
      */
-    readonly jsonPatchOperation: Array<JsonPatchOperation>;
-}
+    updatePasswordDictionary(file?: any, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<void>>;
+};
 /**
- * OAuthClientsApi - object-oriented interface
+ * PasswordDictionaryApi - factory interface
  * @export
- * @class OAuthClientsApi
- * @extends {BaseAPI}
  */
-export declare class OAuthClientsApi extends BaseAPI {
+export declare const PasswordDictionaryApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
     /**
-     * This creates an OAuth client.
-     * @summary Create OAuth Client
-     * @param {OAuthClientsApiCreateOauthClientRequest} requestParameters Request parameters.
+     * This gets password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Dictionary
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof OAuthClientsApi
      */
-    createOauthClient(requestParameters: OAuthClientsApiCreateOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<CreateOAuthClientResponse, any>>;
+    getPasswordDictionary(axiosOptions?: any): AxiosPromise<string>;
     /**
-     * This deletes an OAuth client.
-     * @summary Delete OAuth Client
-     * @param {OAuthClientsApiDeleteOauthClientRequest} requestParameters Request parameters.
+     * This updates password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Dictionary
+     * @param {any} [file]
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof OAuthClientsApi
      */
-    deleteOauthClient(requestParameters: OAuthClientsApiDeleteOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<void, any>>;
+    updatePasswordDictionary(file?: any, axiosOptions?: any): AxiosPromise<void>;
+};
+/**
+ * Request parameters for updatePasswordDictionary operation in PasswordDictionaryApi.
+ * @export
+ * @interface PasswordDictionaryApiUpdatePasswordDictionaryRequest
+ */
+export interface PasswordDictionaryApiUpdatePasswordDictionaryRequest {
     /**
-     * This gets details of an OAuth client.
-     * @summary Get OAuth Client
-     * @param {OAuthClientsApiGetOauthClientRequest} requestParameters Request parameters.
-     * @param {*} [axiosOptions] Override http request option.
-     * @throws {RequiredError}
-     * @memberof OAuthClientsApi
+     *
+     * @type {any}
+     * @memberof PasswordDictionaryApiUpdatePasswordDictionary
      */
-    getOauthClient(requestParameters: OAuthClientsApiGetOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse, any>>;
+    readonly file?: any;
+}
+/**
+ * PasswordDictionaryApi - object-oriented interface
+ * @export
+ * @class PasswordDictionaryApi
+ * @extends {BaseAPI}
+ */
+export declare class PasswordDictionaryApi extends BaseAPI {
     /**
-     * This gets a list of OAuth clients.
-     * @summary List OAuth Clients
-     * @param {OAuthClientsApiListOauthClientsRequest} requestParameters Request parameters.
+     * This gets password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Dictionary
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof OAuthClientsApi
+     * @memberof PasswordDictionaryApi
      */
-    listOauthClients(requestParameters?: OAuthClientsApiListOauthClientsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse[], any>>;
+    getPasswordDictionary(axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<string, any>>;
     /**
-     * This performs a targeted update to the field(s) of an OAuth client.
-     * @summary Patch OAuth Client
-     * @param {OAuthClientsApiPatchOauthClientRequest} requestParameters Request parameters.
+     * This updates password dictionary for the organization. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Dictionary
+     * @param {PasswordDictionaryApiUpdatePasswordDictionaryRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof OAuthClientsApi
+     * @memberof PasswordDictionaryApi
      */
-    patchOauthClient(requestParameters: OAuthClientsApiPatchOauthClientRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<GetOAuthClientResponse, any>>;
+    updatePasswordDictionary(requestParameters?: PasswordDictionaryApiUpdatePasswordDictionaryRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<void, any>>;
 }
 /**
  * PasswordManagementApi - axios parameter creator
@@ -19133,59 +20812,342 @@ export interface PasswordManagementApiGetPasswordChangeStatusRequest {
  */
 export interface PasswordManagementApiQueryPasswordInfoRequest {
     /**
-     *
-     * @type {PasswordInfoQueryDTO}
-     * @memberof PasswordManagementApiQueryPasswordInfo
+     *
+     * @type {PasswordInfoQueryDTO}
+     * @memberof PasswordManagementApiQueryPasswordInfo
+     */
+    readonly passwordInfoQueryDTO: PasswordInfoQueryDTO;
+}
+/**
+ * Request parameters for setPassword operation in PasswordManagementApi.
+ * @export
+ * @interface PasswordManagementApiSetPasswordRequest
+ */
+export interface PasswordManagementApiSetPasswordRequest {
+    /**
+     *
+     * @type {PasswordChangeRequest}
+     * @memberof PasswordManagementApiSetPassword
+     */
+    readonly passwordChangeRequest: PasswordChangeRequest;
+}
+/**
+ * PasswordManagementApi - object-oriented interface
+ * @export
+ * @class PasswordManagementApi
+ * @extends {BaseAPI}
+ */
+export declare class PasswordManagementApi extends BaseAPI {
+    /**
+     * This API returns the status of a password change request. A token with identity owner or trusted API client application authority is required to call this API.
+     * @summary Get Password Change Request Status
+     * @param {PasswordManagementApiGetPasswordChangeStatusRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordManagementApi
+     */
+    getPasswordChangeStatus(requestParameters: PasswordManagementApiGetPasswordChangeStatusRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordStatus, any>>;
+    /**
+     * This API is used to query password related information.   A token with [API authority](https://developer.sailpoint.com/idn/api/authentication#client-credentials-grant-flow)  is required to call this API.  \"API authority\" refers to a token that only has the \"client_credentials\"  grant type, and therefore no user context. A [personal access token](https://developer.sailpoint.com/idn/api/authentication#personal-access-tokens)  or a token generated with the [authorization_code](https://developer.sailpoint.com/idn/api/authentication#authorization-code-grant-flow)  grant type will **NOT** work on this endpoint, and a `403 Forbidden` response  will be returned.
+     * @summary Query Password Info
+     * @param {PasswordManagementApiQueryPasswordInfoRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordManagementApi
+     */
+    queryPasswordInfo(requestParameters: PasswordManagementApiQueryPasswordInfoRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordInfo, any>>;
+    /**
+     * This API is used to set a password for an identity.   An identity can change their own password if they use a token generated by their IDN user, such as a [personal access token](https://developer.sailpoint.com/idn/api/authentication#personal-access-tokens) or [\"authorization_code\" derived OAuth token](https://developer.sailpoint.com/idn/api/authentication#authorization-code-grant-flow).  A token with [API authority](https://developer.sailpoint.com/idn/api/authentication#client-credentials-grant-flow) can be used to change **any** identity\'s password.  \"API authority\" refers to a token that only has the \"client_credentials\" grant type.
+     * @summary Set Identity\'s Password
+     * @param {PasswordManagementApiSetPasswordRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordManagementApi
+     */
+    setPassword(requestParameters: PasswordManagementApiSetPasswordRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordChangeResponse, any>>;
+}
+/**
+ * PasswordSyncGroupsApi - axios parameter creator
+ * @export
+ */
+export declare const PasswordSyncGroupsApiAxiosParamCreator: (configuration?: Configuration) => {
+    /**
+     * This API creates a password sync group based on the specifications provided. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Create Password Sync Group
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordSyncGroup: (passwordSyncGroup: PasswordSyncGroup, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API deletes the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Delete Password Sync Group by ID
+     * @param {string} id The ID of password sync group to delete.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    deletePasswordSyncGroup: (id: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API returns the sync group for the specified ID. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group by ID
+     * @param {string} id The ID of password sync group to retrieve.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroup: (id: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API returns a list of password sync groups. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group List
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroups: (limit?: number, offset?: number, count?: boolean, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API updates the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Sync Group by ID
+     * @param {string} id The ID of password sync group to update.
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordSyncGroup: (id: string, passwordSyncGroup: PasswordSyncGroup, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+};
+/**
+ * PasswordSyncGroupsApi - functional programming interface
+ * @export
+ */
+export declare const PasswordSyncGroupsApiFp: (configuration?: Configuration) => {
+    /**
+     * This API creates a password sync group based on the specifications provided. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Create Password Sync Group
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordSyncGroup(passwordSyncGroup: PasswordSyncGroup, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordSyncGroup>>;
+    /**
+     * This API deletes the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Delete Password Sync Group by ID
+     * @param {string} id The ID of password sync group to delete.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    deletePasswordSyncGroup(id: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<void>>;
+    /**
+     * This API returns the sync group for the specified ID. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group by ID
+     * @param {string} id The ID of password sync group to retrieve.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroup(id: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordSyncGroup>>;
+    /**
+     * This API returns a list of password sync groups. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group List
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroups(limit?: number, offset?: number, count?: boolean, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<PasswordSyncGroup>>>;
+    /**
+     * This API updates the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Sync Group by ID
+     * @param {string} id The ID of password sync group to update.
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordSyncGroup(id: string, passwordSyncGroup: PasswordSyncGroup, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PasswordSyncGroup>>;
+};
+/**
+ * PasswordSyncGroupsApi - factory interface
+ * @export
+ */
+export declare const PasswordSyncGroupsApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
+    /**
+     * This API creates a password sync group based on the specifications provided. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Create Password Sync Group
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createPasswordSyncGroup(passwordSyncGroup: PasswordSyncGroup, axiosOptions?: any): AxiosPromise<PasswordSyncGroup>;
+    /**
+     * This API deletes the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Delete Password Sync Group by ID
+     * @param {string} id The ID of password sync group to delete.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    deletePasswordSyncGroup(id: string, axiosOptions?: any): AxiosPromise<void>;
+    /**
+     * This API returns the sync group for the specified ID. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group by ID
+     * @param {string} id The ID of password sync group to retrieve.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroup(id: string, axiosOptions?: any): AxiosPromise<PasswordSyncGroup>;
+    /**
+     * This API returns a list of password sync groups. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group List
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getPasswordSyncGroups(limit?: number, offset?: number, count?: boolean, axiosOptions?: any): AxiosPromise<Array<PasswordSyncGroup>>;
+    /**
+     * This API updates the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Sync Group by ID
+     * @param {string} id The ID of password sync group to update.
+     * @param {PasswordSyncGroup} passwordSyncGroup
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    updatePasswordSyncGroup(id: string, passwordSyncGroup: PasswordSyncGroup, axiosOptions?: any): AxiosPromise<PasswordSyncGroup>;
+};
+/**
+ * Request parameters for createPasswordSyncGroup operation in PasswordSyncGroupsApi.
+ * @export
+ * @interface PasswordSyncGroupsApiCreatePasswordSyncGroupRequest
+ */
+export interface PasswordSyncGroupsApiCreatePasswordSyncGroupRequest {
+    /**
+     *
+     * @type {PasswordSyncGroup}
+     * @memberof PasswordSyncGroupsApiCreatePasswordSyncGroup
+     */
+    readonly passwordSyncGroup: PasswordSyncGroup;
+}
+/**
+ * Request parameters for deletePasswordSyncGroup operation in PasswordSyncGroupsApi.
+ * @export
+ * @interface PasswordSyncGroupsApiDeletePasswordSyncGroupRequest
+ */
+export interface PasswordSyncGroupsApiDeletePasswordSyncGroupRequest {
+    /**
+     * The ID of password sync group to delete.
+     * @type {string}
+     * @memberof PasswordSyncGroupsApiDeletePasswordSyncGroup
+     */
+    readonly id: string;
+}
+/**
+ * Request parameters for getPasswordSyncGroup operation in PasswordSyncGroupsApi.
+ * @export
+ * @interface PasswordSyncGroupsApiGetPasswordSyncGroupRequest
+ */
+export interface PasswordSyncGroupsApiGetPasswordSyncGroupRequest {
+    /**
+     * The ID of password sync group to retrieve.
+     * @type {string}
+     * @memberof PasswordSyncGroupsApiGetPasswordSyncGroup
+     */
+    readonly id: string;
+}
+/**
+ * Request parameters for getPasswordSyncGroups operation in PasswordSyncGroupsApi.
+ * @export
+ * @interface PasswordSyncGroupsApiGetPasswordSyncGroupsRequest
+ */
+export interface PasswordSyncGroupsApiGetPasswordSyncGroupsRequest {
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof PasswordSyncGroupsApiGetPasswordSyncGroups
+     */
+    readonly limit?: number;
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof PasswordSyncGroupsApiGetPasswordSyncGroups
+     */
+    readonly offset?: number;
+    /**
+     * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {boolean}
+     * @memberof PasswordSyncGroupsApiGetPasswordSyncGroups
      */
-    readonly passwordInfoQueryDTO: PasswordInfoQueryDTO;
+    readonly count?: boolean;
 }
 /**
- * Request parameters for setPassword operation in PasswordManagementApi.
+ * Request parameters for updatePasswordSyncGroup operation in PasswordSyncGroupsApi.
  * @export
- * @interface PasswordManagementApiSetPasswordRequest
+ * @interface PasswordSyncGroupsApiUpdatePasswordSyncGroupRequest
  */
-export interface PasswordManagementApiSetPasswordRequest {
+export interface PasswordSyncGroupsApiUpdatePasswordSyncGroupRequest {
+    /**
+     * The ID of password sync group to update.
+     * @type {string}
+     * @memberof PasswordSyncGroupsApiUpdatePasswordSyncGroup
+     */
+    readonly id: string;
     /**
      *
-     * @type {PasswordChangeRequest}
-     * @memberof PasswordManagementApiSetPassword
+     * @type {PasswordSyncGroup}
+     * @memberof PasswordSyncGroupsApiUpdatePasswordSyncGroup
      */
-    readonly passwordChangeRequest: PasswordChangeRequest;
+    readonly passwordSyncGroup: PasswordSyncGroup;
 }
 /**
- * PasswordManagementApi - object-oriented interface
+ * PasswordSyncGroupsApi - object-oriented interface
  * @export
- * @class PasswordManagementApi
+ * @class PasswordSyncGroupsApi
  * @extends {BaseAPI}
  */
-export declare class PasswordManagementApi extends BaseAPI {
+export declare class PasswordSyncGroupsApi extends BaseAPI {
     /**
-     * This API returns the status of a password change request. A token with identity owner or trusted API client application authority is required to call this API.
-     * @summary Get Password Change Request Status
-     * @param {PasswordManagementApiGetPasswordChangeStatusRequest} requestParameters Request parameters.
+     * This API creates a password sync group based on the specifications provided. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Create Password Sync Group
+     * @param {PasswordSyncGroupsApiCreatePasswordSyncGroupRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof PasswordManagementApi
+     * @memberof PasswordSyncGroupsApi
      */
-    getPasswordChangeStatus(requestParameters: PasswordManagementApiGetPasswordChangeStatusRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordStatus, any>>;
+    createPasswordSyncGroup(requestParameters: PasswordSyncGroupsApiCreatePasswordSyncGroupRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordSyncGroup, any>>;
     /**
-     * This API is used to query password related information.   A token with [API authority](https://developer.sailpoint.com/idn/api/authentication#client-credentials-grant-flow)  is required to call this API.  \"API authority\" refers to a token that only has the \"client_credentials\"  grant type, and therefore no user context. A [personal access token](https://developer.sailpoint.com/idn/api/authentication#personal-access-tokens)  or a token generated with the [authorization_code](https://developer.sailpoint.com/idn/api/authentication#authorization-code-grant-flow)  grant type will **NOT** work on this endpoint, and a `403 Forbidden` response  will be returned.
-     * @summary Query Password Info
-     * @param {PasswordManagementApiQueryPasswordInfoRequest} requestParameters Request parameters.
+     * This API deletes the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Delete Password Sync Group by ID
+     * @param {PasswordSyncGroupsApiDeletePasswordSyncGroupRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof PasswordManagementApi
+     * @memberof PasswordSyncGroupsApi
      */
-    queryPasswordInfo(requestParameters: PasswordManagementApiQueryPasswordInfoRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordInfo, any>>;
+    deletePasswordSyncGroup(requestParameters: PasswordSyncGroupsApiDeletePasswordSyncGroupRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<void, any>>;
     /**
-     * This API is used to set a password for an identity.   An identity can change their own password if they use a token generated by their IDN user, such as a [personal access token](https://developer.sailpoint.com/idn/api/authentication#personal-access-tokens) or [\"authorization_code\" derived OAuth token](https://developer.sailpoint.com/idn/api/authentication#authorization-code-grant-flow).  A token with [API authority](https://developer.sailpoint.com/idn/api/authentication#client-credentials-grant-flow) can be used to change **any** identity\'s password.  \"API authority\" refers to a token that only has the \"client_credentials\" grant type.
-     * @summary Set Identity\'s Password
-     * @param {PasswordManagementApiSetPasswordRequest} requestParameters Request parameters.
+     * This API returns the sync group for the specified ID. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group by ID
+     * @param {PasswordSyncGroupsApiGetPasswordSyncGroupRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
-     * @memberof PasswordManagementApi
+     * @memberof PasswordSyncGroupsApi
      */
-    setPassword(requestParameters: PasswordManagementApiSetPasswordRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordChangeResponse, any>>;
+    getPasswordSyncGroup(requestParameters: PasswordSyncGroupsApiGetPasswordSyncGroupRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordSyncGroup, any>>;
+    /**
+     * This API returns a list of password sync groups. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Get Password Sync Group List
+     * @param {PasswordSyncGroupsApiGetPasswordSyncGroupsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordSyncGroupsApi
+     */
+    getPasswordSyncGroups(requestParameters?: PasswordSyncGroupsApiGetPasswordSyncGroupsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordSyncGroup[], any>>;
+    /**
+     * This API updates the specified password sync group. A token with ORG_ADMIN authority is required to call this API.
+     * @summary Update Password Sync Group by ID
+     * @param {PasswordSyncGroupsApiUpdatePasswordSyncGroupRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PasswordSyncGroupsApi
+     */
+    updatePasswordSyncGroup(requestParameters: PasswordSyncGroupsApiUpdatePasswordSyncGroupRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<PasswordSyncGroup, any>>;
 }
 /**
  * PersonalAccessTokensApi - axios parameter creator
@@ -19777,6 +21739,379 @@ export declare class RequestableObjectsApi extends BaseAPI {
      */
     listRequestableObjects(requestParameters?: RequestableObjectsApiListRequestableObjectsRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<RequestableObject[], any>>;
 }
+/**
+ * RolesApi - axios parameter creator
+ * @export
+ */
+export declare const RolesApiAxiosParamCreator: (configuration?: Configuration) => {
+    /**
+     * This API creates a Role. There is a soft limit of 800 roles per org in IdentityNow.  You will receive an error if you attempt to add more than 800 roles via the API or the UI.  If you need to add roles above this limit, please create a support ticket. A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a ROLE_SUBADMIN may not create a Role including an Access Profile if that Access Profile is associated with a Source with which the ROLE_SUBADMIN is not themselves associated. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create a Role
+     * @param {Role} role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createRole: (role: Role, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API returns a Role by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member.
+     * @summary Get a Role
+     * @param {string} id ID of the Role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRole: (id: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     *
+     * @summary List Identities assigned a Role
+     * @param {string} id ID of the Role for which the assigned Identities are to be listed
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **aliasName**: *eq, sw*  **email**: *eq, sw*  **name**: *eq, sw, co*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **id**, **name**, **aliasName**, **email**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRoleAssignedIdentities: (id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API returns a list of Roles.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API.
+     * @summary List Roles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID. A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw* **created, modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **requestable**: *eq*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Roles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Roles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listRoles: (forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+    /**
+     * This API updates an existing Role using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  The following fields are patchable: **name**, **description**, **enabled**, **owner**, **accessProfiles**, **membership**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments** A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Patch a specified Role
+     * @param {string} id ID of the Role to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    patchRole: (id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
+};
+/**
+ * RolesApi - functional programming interface
+ * @export
+ */
+export declare const RolesApiFp: (configuration?: Configuration) => {
+    /**
+     * This API creates a Role. There is a soft limit of 800 roles per org in IdentityNow.  You will receive an error if you attempt to add more than 800 roles via the API or the UI.  If you need to add roles above this limit, please create a support ticket. A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a ROLE_SUBADMIN may not create a Role including an Access Profile if that Access Profile is associated with a Source with which the ROLE_SUBADMIN is not themselves associated. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create a Role
+     * @param {Role} role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createRole(role: Role, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Role>>;
+    /**
+     * This API returns a Role by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member.
+     * @summary Get a Role
+     * @param {string} id ID of the Role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRole(id: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Role>>;
+    /**
+     *
+     * @summary List Identities assigned a Role
+     * @param {string} id ID of the Role for which the assigned Identities are to be listed
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **aliasName**: *eq, sw*  **email**: *eq, sw*  **name**: *eq, sw, co*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **id**, **name**, **aliasName**, **email**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRoleAssignedIdentities(id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<RoleIdentity>>>;
+    /**
+     * This API returns a list of Roles.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API.
+     * @summary List Roles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID. A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw* **created, modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **requestable**: *eq*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Roles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Roles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listRoles(forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<Role>>>;
+    /**
+     * This API updates an existing Role using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  The following fields are patchable: **name**, **description**, **enabled**, **owner**, **accessProfiles**, **membership**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments** A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Patch a specified Role
+     * @param {string} id ID of the Role to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    patchRole(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Role>>;
+};
+/**
+ * RolesApi - factory interface
+ * @export
+ */
+export declare const RolesApiFactory: (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) => {
+    /**
+     * This API creates a Role. There is a soft limit of 800 roles per org in IdentityNow.  You will receive an error if you attempt to add more than 800 roles via the API or the UI.  If you need to add roles above this limit, please create a support ticket. A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a ROLE_SUBADMIN may not create a Role including an Access Profile if that Access Profile is associated with a Source with which the ROLE_SUBADMIN is not themselves associated. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create a Role
+     * @param {Role} role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    createRole(role: Role, axiosOptions?: any): AxiosPromise<Role>;
+    /**
+     * This API returns a Role by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member.
+     * @summary Get a Role
+     * @param {string} id ID of the Role
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRole(id: string, axiosOptions?: any): AxiosPromise<Role>;
+    /**
+     *
+     * @summary List Identities assigned a Role
+     * @param {string} id ID of the Role for which the assigned Identities are to be listed
+     * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **aliasName**: *eq, sw*  **email**: *eq, sw*  **name**: *eq, sw, co*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **id**, **name**, **aliasName**, **email**
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    getRoleAssignedIdentities(id: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, axiosOptions?: any): AxiosPromise<Array<RoleIdentity>>;
+    /**
+     * This API returns a list of Roles.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API.
+     * @summary List Roles
+     * @param {string} [forSubadmin] If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID. A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @param {number} [limit] Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {boolean} [count] If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw* **created, modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **requestable**: *eq*
+     * @param {string} [sorters] Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, created, modified**
+     * @param {string} [forSegmentIds] If present and not empty, additionally filters Roles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @param {boolean} [includeUnsegmented] Whether or not the response list should contain unsegmented Roles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    listRoles(forSubadmin?: string, limit?: number, offset?: number, count?: boolean, filters?: string, sorters?: string, forSegmentIds?: string, includeUnsegmented?: boolean, axiosOptions?: any): AxiosPromise<Array<Role>>;
+    /**
+     * This API updates an existing Role using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  The following fields are patchable: **name**, **description**, **enabled**, **owner**, **accessProfiles**, **membership**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments** A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Patch a specified Role
+     * @param {string} id ID of the Role to patch
+     * @param {Array<JsonPatchOperation>} jsonPatchOperation
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     */
+    patchRole(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: any): AxiosPromise<Role>;
+};
+/**
+ * Request parameters for createRole operation in RolesApi.
+ * @export
+ * @interface RolesApiCreateRoleRequest
+ */
+export interface RolesApiCreateRoleRequest {
+    /**
+     *
+     * @type {Role}
+     * @memberof RolesApiCreateRole
+     */
+    readonly role: Role;
+}
+/**
+ * Request parameters for getRole operation in RolesApi.
+ * @export
+ * @interface RolesApiGetRoleRequest
+ */
+export interface RolesApiGetRoleRequest {
+    /**
+     * ID of the Role
+     * @type {string}
+     * @memberof RolesApiGetRole
+     */
+    readonly id: string;
+}
+/**
+ * Request parameters for getRoleAssignedIdentities operation in RolesApi.
+ * @export
+ * @interface RolesApiGetRoleAssignedIdentitiesRequest
+ */
+export interface RolesApiGetRoleAssignedIdentitiesRequest {
+    /**
+     * ID of the Role for which the assigned Identities are to be listed
+     * @type {string}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly id: string;
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly limit?: number;
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly offset?: number;
+    /**
+     * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {boolean}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly count?: boolean;
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq, in*  **aliasName**: *eq, sw*  **email**: *eq, sw*  **name**: *eq, sw, co*
+     * @type {string}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly filters?: string;
+    /**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results)  Sorting is supported for the following fields: **id**, **name**, **aliasName**, **email**
+     * @type {string}
+     * @memberof RolesApiGetRoleAssignedIdentities
+     */
+    readonly sorters?: string;
+}
+/**
+ * Request parameters for listRoles operation in RolesApi.
+ * @export
+ * @interface RolesApiListRolesRequest
+ */
+export interface RolesApiListRolesRequest {
+    /**
+     * If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity\&#39;s ID. A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
+     * @type {string}
+     * @memberof RolesApiListRoles
+     */
+    readonly forSubadmin?: string;
+    /**
+     * Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof RolesApiListRoles
+     */
+    readonly limit?: number;
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof RolesApiListRoles
+     */
+    readonly offset?: number;
+    /**
+     * If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored.  Since requesting a total count can have a performance impact, it is recommended not to send **count&#x3D;true** if that value will not be used.  See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {boolean}
+     * @memberof RolesApiListRoles
+     */
+    readonly count?: boolean;
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw* **created, modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **requestable**: *eq*
+     * @type {string}
+     * @memberof RolesApiListRoles
+     */
+    readonly filters?: string;
+    /**
+     * Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, created, modified**
+     * @type {string}
+     * @memberof RolesApiListRoles
+     */
+    readonly sorters?: string;
+    /**
+     * If present and not empty, additionally filters Roles to those which are assigned to the Segment(s) with the specified IDs.  If segmentation is currently unavailable, specifying this parameter results in an error.
+     * @type {string}
+     * @memberof RolesApiListRoles
+     */
+    readonly forSegmentIds?: string;
+    /**
+     * Whether or not the response list should contain unsegmented Roles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
+     * @type {boolean}
+     * @memberof RolesApiListRoles
+     */
+    readonly includeUnsegmented?: boolean;
+}
+/**
+ * Request parameters for patchRole operation in RolesApi.
+ * @export
+ * @interface RolesApiPatchRoleRequest
+ */
+export interface RolesApiPatchRoleRequest {
+    /**
+     * ID of the Role to patch
+     * @type {string}
+     * @memberof RolesApiPatchRole
+     */
+    readonly id: string;
+    /**
+     *
+     * @type {Array<JsonPatchOperation>}
+     * @memberof RolesApiPatchRole
+     */
+    readonly jsonPatchOperation: Array<JsonPatchOperation>;
+}
+/**
+ * RolesApi - object-oriented interface
+ * @export
+ * @class RolesApi
+ * @extends {BaseAPI}
+ */
+export declare class RolesApi extends BaseAPI {
+    /**
+     * This API creates a Role. There is a soft limit of 800 roles per org in IdentityNow.  You will receive an error if you attempt to add more than 800 roles via the API or the UI.  If you need to add roles above this limit, please create a support ticket. A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a ROLE_SUBADMIN may not create a Role including an Access Profile if that Access Profile is associated with a Source with which the ROLE_SUBADMIN is not themselves associated. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Create a Role
+     * @param {RolesApiCreateRoleRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof RolesApi
+     */
+    createRole(requestParameters: RolesApiCreateRoleRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Role, any>>;
+    /**
+     * This API returns a Role by its ID.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member.
+     * @summary Get a Role
+     * @param {RolesApiGetRoleRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof RolesApi
+     */
+    getRole(requestParameters: RolesApiGetRoleRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Role, any>>;
+    /**
+     *
+     * @summary List Identities assigned a Role
+     * @param {RolesApiGetRoleAssignedIdentitiesRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof RolesApi
+     */
+    getRoleAssignedIdentities(requestParameters: RolesApiGetRoleAssignedIdentitiesRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<RoleIdentity[], any>>;
+    /**
+     * This API returns a list of Roles.  A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API.
+     * @summary List Roles
+     * @param {RolesApiListRolesRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof RolesApi
+     */
+    listRoles(requestParameters?: RolesApiListRolesRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Role[], any>>;
+    /**
+     * This API updates an existing Role using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  The following fields are patchable: **name**, **description**, **enabled**, **owner**, **accessProfiles**, **membership**, **requestable**, **accessRequestConfig**, **revokeRequestConfig**, **segments** A token with API, ORG_ADMIN, ROLE_ADMIN, or ROLE_SUBADMIN authority is required to call this API. In addition, a token with ROLE_SUBADMIN authority may only call this API if all Access Profiles included in the Role are associated to Sources with management workgroups of which the ROLE_SUBADMIN is a member. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing roles, however, any new roles as well as any updates to existing descriptions will be limited to 2000 characters.
+     * @summary Patch a specified Role
+     * @param {RolesApiPatchRoleRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof RolesApi
+     */
+    patchRole(requestParameters: RolesApiPatchRoleRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Role, any>>;
+}
 /**
  * SavedSearchApi - axios parameter creator
  * @export
@@ -21447,7 +23782,7 @@ export declare const SourcesApiAxiosParamCreator: (configuration?: Configuration
      */
     updateSource: (id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig) => Promise<RequestArgs>;
     /**
-     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
+     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-source-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
      * @summary Update Source Schema (Partial)
      * @param {string} sourceId The Source id.
      * @param {string} schemaId The Schema id.
@@ -21682,7 +24017,7 @@ export declare const SourcesApiFp: (configuration?: Configuration) => {
      */
     updateSource(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: AxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Source>>;
     /**
-     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
+     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-source-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
      * @summary Update Source Schema (Partial)
      * @param {string} sourceId The Source id.
      * @param {string} schemaId The Schema id.
@@ -21917,7 +24252,7 @@ export declare const SourcesApiFactory: (configuration?: Configuration, basePath
      */
     updateSource(id: string, jsonPatchOperation: Array<JsonPatchOperation>, axiosOptions?: any): AxiosPromise<Source>;
     /**
-     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
+     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-source-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
      * @summary Update Source Schema (Partial)
      * @param {string} sourceId The Source id.
      * @param {string} schemaId The Schema id.
@@ -22651,7 +24986,7 @@ export declare class SourcesApi extends BaseAPI {
      */
     updateSource(requestParameters: SourcesApiUpdateSourceRequest, axiosOptions?: AxiosRequestConfig): Promise<import("axios").AxiosResponse<Source, any>>;
     /**
-     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
+     * Use this API to selectively update an existing Schema using a JSONPatch payload.   The following schema fields are immutable and cannot be updated:  - id - name - created - modified   To switch an account attribute to a group entitlement, you need to have the following in place:  - `isEntitlement: true` - Must define a schema for the group and [add it to the source](https://developer.sailpoint.com/idn/api/v3/create-source-schema) before updating the `isGroup` flag.  For example, here is the `group` account attribute referencing a schema that defines the group: ```json {     \"name\": \"groups\",     \"type\": \"STRING\",     \"schema\": {         \"type\": \"CONNECTOR_SCHEMA\",         \"id\": \"2c9180887671ff8c01767b4671fc7d60\",         \"name\": \"group\"     },     \"description\": \"The groups, roles etc. that reference account group objects\",     \"isMulti\": true,     \"isEntitlement\": true,     \"isGroup\": true } ```
      * @summary Update Source Schema (Partial)
      * @param {SourcesApiUpdateSourceSchemaRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.