sailpoint-api-client 1.8.42 → 1.8.51

package/v2026/api.ts

@@ -298,6 +298,12 @@ export interface AccessItemAccessProfileResponseV2026 {
      * @memberof AccessItemAccessProfileResponseV2026
      */
     'appRefs': Array<AccessItemAccessProfileResponseAppRefsInnerV2026>;
+    /**
+     * the date the access profile will be assigned to the specified identity, in case requested with a future start date
+     * @type {string}
+     * @memberof AccessItemAccessProfileResponseV2026
+     */
+    'startDate'?: string | null;
     /**
      * the date the access profile is no longer assigned to the specified identity
      * @type {string}
@@ -525,6 +531,12 @@ export interface AccessItemAssociatedAccessItemV2026 {
      * @memberof AccessItemAssociatedAccessItemV2026
      */
     'appRefs': Array<AccessItemAccessProfileResponseAppRefsInnerV2026>;
+    /**
+     * the date the access profile will be assigned to the specified identity, in case requested with a future start date
+     * @type {string}
+     * @memberof AccessItemAssociatedAccessItemV2026
+     */
+    'startDate'?: string | null;
     /**
      * the date the role is no longer assigned to the specified identity
      * @type {string}
@@ -1000,6 +1012,12 @@ export interface AccessItemRoleResponseV2026 {
      * @memberof AccessItemRoleResponseV2026
      */
     'description'?: string;
+    /**
+     * the date the access profile will be assigned to the specified identity, in case requested with a future start date
+     * @type {string}
+     * @memberof AccessItemRoleResponseV2026
+     */
+    'startDate'?: string | null;
     /**
      * the date the role is no longer assigned to the specified identity
      * @type {string}
@@ -8013,12 +8031,6 @@ export interface ApprovalConfigCronTimezoneV2026 {
  * @interface ApprovalConfigEscalationConfigEscalationChainInnerV2026
  */
 export interface ApprovalConfigEscalationConfigEscalationChainInnerV2026 {
-    /**
-     * ID of the escalation chain.
-     * @type {string}
-     * @memberof ApprovalConfigEscalationConfigEscalationChainInnerV2026
-     */
-    'chainId'?: string;
     /**
      * Starting at 1 defines the order in which the identities will get assigned
      * @type {number}
@@ -8026,18 +8038,46 @@ export interface ApprovalConfigEscalationConfigEscalationChainInnerV2026 {
      */
     'tier'?: number;
     /**
-     * Identity ID in the escalation chain.
+     * Optional Identity ID of the type of identity defined in the \'identityType\' field.
      * @type {string}
      * @memberof ApprovalConfigEscalationConfigEscalationChainInnerV2026
      */
     'identityId'?: string;
     /**
-     * Type of identity in the escalation chain.
+     * Type of identityId in the escalation chain.
      * @type {string}
      * @memberof ApprovalConfigEscalationConfigEscalationChainInnerV2026
      */
-    'identityType'?: string;
+    'identityType'?: ApprovalConfigEscalationConfigEscalationChainInnerV2026IdentityTypeV2026;
 }
+
+export const ApprovalConfigEscalationConfigEscalationChainInnerV2026IdentityTypeV2026 = {
+    Identity: 'IDENTITY',
+    ManagerOf: 'MANAGER_OF',
+    AccountOwner: 'ACCOUNT_OWNER',
+    MachineAccountOwner: 'MACHINE_ACCOUNT_OWNER',
+    MachineIdentityOwner: 'MACHINE_IDENTITY_OWNER',
+    ManagerOfRequestedTargetOwner: 'MANAGER_OF_REQUESTED_TARGET_OWNER',
+    ManagerOfMachineIdentityOwner: 'MANAGER_OF_MACHINE_IDENTITY_OWNER',
+    ManagerOfAccountOwner: 'MANAGER_OF_ACCOUNT_OWNER',
+    ManagerOfMachineAccountOwner: 'MANAGER_OF_MACHINE_ACCOUNT_OWNER',
+    ManagerOfRequester: 'MANAGER_OF_REQUESTER',
+    ManagerOfRequesterOwner: 'MANAGER_OF_REQUESTER_OWNER',
+    ManagerOfOwner: 'MANAGER_OF_OWNER',
+    AccessProfileOwner: 'ACCESS_PROFILE_OWNER',
+    ApplicationOwner: 'APPLICATION_OWNER',
+    EntitlementOwner: 'ENTITLEMENT_OWNER',
+    RoleOwner: 'ROLE_OWNER',
+    SourceOwner: 'SOURCE_OWNER',
+    AccessProfilePrimaryOwner: 'ACCESS_PROFILE_PRIMARY_OWNER',
+    ApplicationPrimaryOwner: 'APPLICATION_PRIMARY_OWNER',
+    EntitlementPrimaryOwner: 'ENTITLEMENT_PRIMARY_OWNER',
+    RolePrimaryOwner: 'ROLE_PRIMARY_OWNER',
+    SourcePrimaryOwner: 'SOURCE_PRIMARY_OWNER'
+} as const;
+
+export type ApprovalConfigEscalationConfigEscalationChainInnerV2026IdentityTypeV2026 = typeof ApprovalConfigEscalationConfigEscalationChainInnerV2026IdentityTypeV2026[keyof typeof ApprovalConfigEscalationConfigEscalationChainInnerV2026IdentityTypeV2026];
+
 /**
  * Configuration for escalations.
  * @export
@@ -8069,6 +8109,55 @@ export interface ApprovalConfigEscalationConfigV2026 {
      */
     'escalationChain'?: Array<ApprovalConfigEscalationConfigEscalationChainInnerV2026>;
 }
+/**
+ * Configuration for fallback approver. Used if the user cannot be found for whatever reason and escalation config does not exist.
+ * @export
+ * @interface ApprovalConfigFallbackApproverV2026
+ */
+export interface ApprovalConfigFallbackApproverV2026 {
+    /**
+     * Optional Identity ID of the type of identity defined in the \'type\' field.
+     * @type {string}
+     * @memberof ApprovalConfigFallbackApproverV2026
+     */
+    'identityID'?: string;
+    /**
+     * Type of identityID for the fallback approver.
+     * @type {string}
+     * @memberof ApprovalConfigFallbackApproverV2026
+     */
+    'type'?: ApprovalConfigFallbackApproverV2026TypeV2026;
+}
+
+export const ApprovalConfigFallbackApproverV2026TypeV2026 = {
+    Identity: 'IDENTITY',
+    ManagerOf: 'MANAGER_OF',
+    AccountOwner: 'ACCOUNT_OWNER',
+    MachineAccountOwner: 'MACHINE_ACCOUNT_OWNER',
+    MachineIdentityOwner: 'MACHINE_IDENTITY_OWNER',
+    ManagerOfRequestedTargetOwner: 'MANAGER_OF_REQUESTED_TARGET_OWNER',
+    ManagerOfMachineIdentityOwner: 'MANAGER_OF_MACHINE_IDENTITY_OWNER',
+    ManagerOfAccountOwner: 'MANAGER_OF_ACCOUNT_OWNER',
+    ManagerOfMachineAccountOwner: 'MANAGER_OF_MACHINE_ACCOUNT_OWNER',
+    ManagerOfRequester: 'MANAGER_OF_REQUESTER',
+    ManagerOfRequesterOwner: 'MANAGER_OF_REQUESTER_OWNER',
+    ManagerOfOwner: 'MANAGER_OF_OWNER',
+    AccessProfileOwner: 'ACCESS_PROFILE_OWNER',
+    ApplicationOwner: 'APPLICATION_OWNER',
+    EntitlementOwner: 'ENTITLEMENT_OWNER',
+    RoleOwner: 'ROLE_OWNER',
+    SourceOwner: 'SOURCE_OWNER',
+    RequestedTargetOwner: 'REQUESTED_TARGET_OWNER',
+    AccessProfilePrimaryOwner: 'ACCESS_PROFILE_PRIMARY_OWNER',
+    ApplicationPrimaryOwner: 'APPLICATION_PRIMARY_OWNER',
+    EntitlementPrimaryOwner: 'ENTITLEMENT_PRIMARY_OWNER',
+    RolePrimaryOwner: 'ROLE_PRIMARY_OWNER',
+    SourcePrimaryOwner: 'SOURCE_PRIMARY_OWNER',
+    RequestedTargetPrimaryOwner: 'REQUESTED_TARGET_PRIMARY_OWNER'
+} as const;
+
+export type ApprovalConfigFallbackApproverV2026TypeV2026 = typeof ApprovalConfigFallbackApproverV2026TypeV2026[keyof typeof ApprovalConfigFallbackApproverV2026TypeV2026];
+
 /**
  * Configuration for reminders.
  * @export
@@ -8106,12 +8195,6 @@ export interface ApprovalConfigReminderConfigV2026 {
  * @interface ApprovalConfigSerialChainInnerV2026
  */
 export interface ApprovalConfigSerialChainInnerV2026 {
-    /**
-     * ID of the serial chain.
-     * @type {string}
-     * @memberof ApprovalConfigSerialChainInnerV2026
-     */
-    'chainId'?: string;
     /**
      * Starting at 1 defines the order in which the identities will get assigned
      * @type {number}
@@ -8119,18 +8202,61 @@ export interface ApprovalConfigSerialChainInnerV2026 {
      */
     'tier'?: number;
     /**
-     * Identity ID in the serial chain.
+     * Optional Identity ID of the type of identity defined in the \'identityType\' field.
      * @type {string}
      * @memberof ApprovalConfigSerialChainInnerV2026
      */
     'identityId'?: string;
     /**
-     * Type of identity in the serial chain.
+     * Type of identityId in the serial chain.
      * @type {string}
      * @memberof ApprovalConfigSerialChainInnerV2026
      */
-    'identityType'?: string;
+    'identityType'?: ApprovalConfigSerialChainInnerV2026IdentityTypeV2026;
 }
+
+export const ApprovalConfigSerialChainInnerV2026IdentityTypeV2026 = {
+    Identity: 'IDENTITY',
+    GovernanceGroup: 'GOVERNANCE_GROUP',
+    ManagerOf: 'MANAGER_OF',
+    AccountOwner: 'ACCOUNT_OWNER',
+    MachineAccountOwner: 'MACHINE_ACCOUNT_OWNER',
+    MachineIdentityOwner: 'MACHINE_IDENTITY_OWNER',
+    ManagerOfRequestedTargetOwner: 'MANAGER_OF_REQUESTED_TARGET_OWNER',
+    ManagerOfMachineIdentityOwner: 'MANAGER_OF_MACHINE_IDENTITY_OWNER',
+    ManagerOfAccountOwner: 'MANAGER_OF_ACCOUNT_OWNER',
+    ManagerOfMachineAccountOwner: 'MANAGER_OF_MACHINE_ACCOUNT_OWNER',
+    ManagerOfRequester: 'MANAGER_OF_REQUESTER',
+    ManagerOfRequesterOwner: 'MANAGER_OF_REQUESTER_OWNER',
+    ManagerOfOwner: 'MANAGER_OF_OWNER',
+    AccessProfileOwner: 'ACCESS_PROFILE_OWNER',
+    ApplicationOwner: 'APPLICATION_OWNER',
+    EntitlementOwner: 'ENTITLEMENT_OWNER',
+    RoleOwner: 'ROLE_OWNER',
+    SourceOwner: 'SOURCE_OWNER',
+    RequestedTargetOwner: 'REQUESTED_TARGET_OWNER',
+    AccessProfilePrimaryOwner: 'ACCESS_PROFILE_PRIMARY_OWNER',
+    ApplicationPrimaryOwner: 'APPLICATION_PRIMARY_OWNER',
+    EntitlementPrimaryOwner: 'ENTITLEMENT_PRIMARY_OWNER',
+    RolePrimaryOwner: 'ROLE_PRIMARY_OWNER',
+    SourcePrimaryOwner: 'SOURCE_PRIMARY_OWNER',
+    RequestedTargetPrimaryOwner: 'REQUESTED_TARGET_PRIMARY_OWNER',
+    AccessProfileSecondaryOwnerGroup: 'ACCESS_PROFILE_SECONDARY_OWNER_GROUP',
+    ApplicationSecondaryOwnerGroup: 'APPLICATION_SECONDARY_OWNER_GROUP',
+    EntitlementSecondaryOwnerGroup: 'ENTITLEMENT_SECONDARY_OWNER_GROUP',
+    RoleSecondaryOwnerGroup: 'ROLE_SECONDARY_OWNER_GROUP',
+    SourceSecondaryOwnerGroup: 'SOURCE_SECONDARY_OWNER_GROUP',
+    RequestedTargetSecondaryOwnerGroup: 'REQUESTED_TARGET_SECONDARY_OWNER_GROUP',
+    AccessProfileAllOwnerGroup: 'ACCESS_PROFILE_ALL_OWNER_GROUP',
+    ApplicationAllOwnerGroup: 'APPLICATION_ALL_OWNER_GROUP',
+    EntitlementAllOwnerGroup: 'ENTITLEMENT_ALL_OWNER_GROUP',
+    RoleAllOwnerGroup: 'ROLE_ALL_OWNER_GROUP',
+    SourceAllOwnerGroup: 'SOURCE_ALL_OWNER_GROUP',
+    RequestedTargetAllOwnerGroup: 'REQUESTED_TARGET_ALL_OWNER_GROUP'
+} as const;
+
+export type ApprovalConfigSerialChainInnerV2026IdentityTypeV2026 = typeof ApprovalConfigSerialChainInnerV2026IdentityTypeV2026[keyof typeof ApprovalConfigSerialChainInnerV2026IdentityTypeV2026];
+
 /**
  * TimeoutConfig contains configurations around when the approval request should expire.
  * @export
@@ -8207,11 +8333,11 @@ export interface ApprovalConfigV2026 {
      */
     'requiresComment'?: ApprovalConfigV2026RequiresCommentV2026;
     /**
-     * Configuration for fallback approver. Used if the user cannot be found for whatever reason and escalation config does not exist.
-     * @type {ApprovalIdentityV2026}
+     * 
+     * @type {ApprovalConfigFallbackApproverV2026}
      * @memberof ApprovalConfigV2026
      */
-    'fallbackApprover'?: ApprovalIdentityV2026;
+    'fallbackApprover'?: ApprovalConfigFallbackApproverV2026;
     /**
      * Specifies how to treat the identity type \"MANAGER_OF\" when the requestee is a machine identity.
      * @type {string}
@@ -8487,7 +8613,7 @@ export interface ApprovalIdentityV2026 {
      */
     'email'?: string;
     /**
-     * Identity ID.
+     * Identity ID of the type of identity defined in the \'type\' field.
      * @type {string}
      * @memberof ApprovalIdentityV2026
      */
@@ -8517,7 +8643,7 @@ export interface ApprovalIdentityV2026 {
      */
     'serialOrder'?: number;
     /**
-     * Type of identity.
+     * Type of identityID.
      * @type {string}
      * @memberof ApprovalIdentityV2026
      */
@@ -8526,13 +8652,42 @@ export interface ApprovalIdentityV2026 {
 
 export const ApprovalIdentityV2026TypeV2026 = {
     Identity: 'IDENTITY',
-    ManagerOf: 'MANAGER_OF',
     GovernanceGroup: 'GOVERNANCE_GROUP',
-    SourceOwner: 'SOURCE_OWNER',
-    RoleOwner: 'ROLE_OWNER',
+    ManagerOf: 'MANAGER_OF',
+    AccountOwner: 'ACCOUNT_OWNER',
+    MachineAccountOwner: 'MACHINE_ACCOUNT_OWNER',
+    MachineIdentityOwner: 'MACHINE_IDENTITY_OWNER',
+    ManagerOfRequestedTargetOwner: 'MANAGER_OF_REQUESTED_TARGET_OWNER',
+    ManagerOfMachineIdentityOwner: 'MANAGER_OF_MACHINE_IDENTITY_OWNER',
+    ManagerOfAccountOwner: 'MANAGER_OF_ACCOUNT_OWNER',
+    ManagerOfMachineAccountOwner: 'MANAGER_OF_MACHINE_ACCOUNT_OWNER',
+    ManagerOfRequester: 'MANAGER_OF_REQUESTER',
+    ManagerOfRequesterOwner: 'MANAGER_OF_REQUESTER_OWNER',
+    ManagerOfOwner: 'MANAGER_OF_OWNER',
     AccessProfileOwner: 'ACCESS_PROFILE_OWNER',
+    ApplicationOwner: 'APPLICATION_OWNER',
     EntitlementOwner: 'ENTITLEMENT_OWNER',
-    ApplicationOwner: 'APPLICATION_OWNER'
+    RoleOwner: 'ROLE_OWNER',
+    SourceOwner: 'SOURCE_OWNER',
+    RequestedTargetOwner: 'REQUESTED_TARGET_OWNER',
+    AccessProfilePrimaryOwner: 'ACCESS_PROFILE_PRIMARY_OWNER',
+    ApplicationPrimaryOwner: 'APPLICATION_PRIMARY_OWNER',
+    EntitlementPrimaryOwner: 'ENTITLEMENT_PRIMARY_OWNER',
+    RolePrimaryOwner: 'ROLE_PRIMARY_OWNER',
+    SourcePrimaryOwner: 'SOURCE_PRIMARY_OWNER',
+    RequestedTargetPrimaryOwner: 'REQUESTED_TARGET_PRIMARY_OWNER',
+    AccessProfileSecondaryOwnerGroup: 'ACCESS_PROFILE_SECONDARY_OWNER_GROUP',
+    ApplicationSecondaryOwnerGroup: 'APPLICATION_SECONDARY_OWNER_GROUP',
+    EntitlementSecondaryOwnerGroup: 'ENTITLEMENT_SECONDARY_OWNER_GROUP',
+    RoleSecondaryOwnerGroup: 'ROLE_SECONDARY_OWNER_GROUP',
+    SourceSecondaryOwnerGroup: 'SOURCE_SECONDARY_OWNER_GROUP',
+    RequestedTargetSecondaryOwnerGroup: 'REQUESTED_TARGET_SECONDARY_OWNER_GROUP',
+    AccessProfileAllOwnerGroup: 'ACCESS_PROFILE_ALL_OWNER_GROUP',
+    ApplicationAllOwnerGroup: 'APPLICATION_ALL_OWNER_GROUP',
+    EntitlementAllOwnerGroup: 'ENTITLEMENT_ALL_OWNER_GROUP',
+    RoleAllOwnerGroup: 'ROLE_ALL_OWNER_GROUP',
+    SourceAllOwnerGroup: 'SOURCE_ALL_OWNER_GROUP',
+    RequestedTargetAllOwnerGroup: 'REQUESTED_TARGET_ALL_OWNER_GROUP'
 } as const;
 
 export type ApprovalIdentityV2026TypeV2026 = typeof ApprovalIdentityV2026TypeV2026[keyof typeof ApprovalIdentityV2026TypeV2026];
@@ -11532,6 +11687,91 @@ export interface BulkApproveAccessRequestV2026 {
      */
     'comment': string;
 }
+/**
+ * A single item in a bulk entitlement recommendation approval request. The recordType is optional; the backend resolves the type by ID lookup when omitted. Description applies to SED items only; privilegeLevel is required for privilege items.
+ * @export
+ * @interface BulkApproveEntitlementRecommendationItemV2026
+ */
+export interface BulkApproveEntitlementRecommendationItemV2026 {
+    /**
+     * The unique identifier of the recommendation record to approve.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationItemV2026
+     */
+    'id': string;
+    /**
+     * The type of the recommendation. When omitted, the backend resolves the type by looking up the ID.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationItemV2026
+     */
+    'recordType'?: BulkApproveEntitlementRecommendationItemV2026RecordTypeV2026 | null;
+    /**
+     * The approved description text. Required for SED-type items; ignored for privilege items.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationItemV2026
+     */
+    'description'?: string | null;
+    /**
+     * The approved privilege level. Required for privilege-type items; ignored for SED items.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationItemV2026
+     */
+    'privilegeLevel'?: string | null;
+}
+
+export const BulkApproveEntitlementRecommendationItemV2026RecordTypeV2026 = {
+    Sed: 'SED',
+    Privilege: 'privilege'
+} as const;
+
+export type BulkApproveEntitlementRecommendationItemV2026RecordTypeV2026 = typeof BulkApproveEntitlementRecommendationItemV2026RecordTypeV2026[keyof typeof BulkApproveEntitlementRecommendationItemV2026RecordTypeV2026];
+
+/**
+ * Request body for bulk-approving a set of entitlement recommendations.
+ * @export
+ * @interface BulkApproveEntitlementRecommendationRequestV2026
+ */
+export interface BulkApproveEntitlementRecommendationRequestV2026 {
+    /**
+     * The list of recommendation items to approve.
+     * @type {Array<BulkApproveEntitlementRecommendationItemV2026>}
+     * @memberof BulkApproveEntitlementRecommendationRequestV2026
+     */
+    'items': Array<BulkApproveEntitlementRecommendationItemV2026>;
+}
+/**
+ * The result for a single item in a bulk entitlement recommendation approval response.
+ * @export
+ * @interface BulkApproveEntitlementRecommendationResultV2026
+ */
+export interface BulkApproveEntitlementRecommendationResultV2026 {
+    /**
+     * The unique identifier of the processed recommendation record.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationResultV2026
+     */
+    'id'?: string;
+    /**
+     * The outcome of the approval for this item.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationResultV2026
+     */
+    'status'?: BulkApproveEntitlementRecommendationResultV2026StatusV2026;
+    /**
+     * The reason for failure if status is FAILURE; null on success.
+     * @type {string}
+     * @memberof BulkApproveEntitlementRecommendationResultV2026
+     */
+    'failedReason'?: string | null;
+}
+
+export const BulkApproveEntitlementRecommendationResultV2026StatusV2026 = {
+    Success: 'SUCCESS',
+    Failure: 'FAILURE'
+} as const;
+
+export type BulkApproveEntitlementRecommendationResultV2026StatusV2026 = typeof BulkApproveEntitlementRecommendationResultV2026StatusV2026[keyof typeof BulkApproveEntitlementRecommendationResultV2026StatusV2026];
+
 /**
  * BulkApproveRequestDTO is the input struct that represents the request body required to facilitate a bulk approval action for a set of generic approval requests.
  * @export
@@ -19157,6 +19397,216 @@ export const EntitlementPrivilegeLevelV2026EffectiveV2026 = {
 
 export type EntitlementPrivilegeLevelV2026EffectiveV2026 = typeof EntitlementPrivilegeLevelV2026EffectiveV2026[keyof typeof EntitlementPrivilegeLevelV2026EffectiveV2026];
 
+/**
+ * Request body for assigning a set of entitlement recommendations to a reviewer.
+ * @export
+ * @interface EntitlementRecommendationAssignRequestV2026
+ */
+export interface EntitlementRecommendationAssignRequestV2026 {
+    /**
+     * The list of recommendation record IDs to assign.
+     * @type {Array<string>}
+     * @memberof EntitlementRecommendationAssignRequestV2026
+     */
+    'items': Array<string>;
+    /**
+     * 
+     * @type {EntitlementRecommendationAssigneeV2026}
+     * @memberof EntitlementRecommendationAssignRequestV2026
+     */
+    'assignee': EntitlementRecommendationAssigneeV2026;
+}
+/**
+ * Response body returned when entitlement recommendations are successfully queued for assignment.
+ * @export
+ * @interface EntitlementRecommendationAssignResultV2026
+ */
+export interface EntitlementRecommendationAssignResultV2026 {
+    /**
+     * The unique identifier of the assignment batch created by this request.
+     * @type {string}
+     * @memberof EntitlementRecommendationAssignResultV2026
+     */
+    'batchId'?: string;
+}
+/**
+ * Assign to the source owner or entitlement owner role. No value field is required.
+ * @export
+ * @interface EntitlementRecommendationAssigneeOneOf1V2026
+ */
+export interface EntitlementRecommendationAssigneeOneOf1V2026 {
+    /**
+     * The type of assignee.
+     * @type {string}
+     * @memberof EntitlementRecommendationAssigneeOneOf1V2026
+     */
+    'type': EntitlementRecommendationAssigneeOneOf1V2026TypeV2026;
+}
+
+export const EntitlementRecommendationAssigneeOneOf1V2026TypeV2026 = {
+    SourceOwner: 'SOURCE_OWNER',
+    EntitlementOwner: 'ENTITLEMENT_OWNER'
+} as const;
+
+export type EntitlementRecommendationAssigneeOneOf1V2026TypeV2026 = typeof EntitlementRecommendationAssigneeOneOf1V2026TypeV2026[keyof typeof EntitlementRecommendationAssigneeOneOf1V2026TypeV2026];
+
+/**
+ * Assign to a specific identity or governance group. The value field is required and must be the ID of the identity or governance group.
+ * @export
+ * @interface EntitlementRecommendationAssigneeOneOfV2026
+ */
+export interface EntitlementRecommendationAssigneeOneOfV2026 {
+    /**
+     * The type of assignee.
+     * @type {string}
+     * @memberof EntitlementRecommendationAssigneeOneOfV2026
+     */
+    'type': EntitlementRecommendationAssigneeOneOfV2026TypeV2026;
+    /**
+     * The ID of the identity or governance group to assign to.
+     * @type {string}
+     * @memberof EntitlementRecommendationAssigneeOneOfV2026
+     */
+    'value': string;
+}
+
+export const EntitlementRecommendationAssigneeOneOfV2026TypeV2026 = {
+    Identity: 'IDENTITY',
+    GovernanceGroup: 'GOVERNANCE_GROUP'
+} as const;
+
+export type EntitlementRecommendationAssigneeOneOfV2026TypeV2026 = typeof EntitlementRecommendationAssigneeOneOfV2026TypeV2026[keyof typeof EntitlementRecommendationAssigneeOneOfV2026TypeV2026];
+
+/**
+ * @type EntitlementRecommendationAssigneeV2026
+ * Describes the target assignee for entitlement recommendations.
+ * @export
+ */
+export type EntitlementRecommendationAssigneeV2026 = EntitlementRecommendationAssigneeOneOf1V2026 | EntitlementRecommendationAssigneeOneOfV2026;
+
+/**
+ * A unified entitlement recommendation record representing either a SED (Suggested Entitlement Description) or a privilege recommendation.
+ * @export
+ * @interface EntitlementRecommendationRecordV2026
+ */
+export interface EntitlementRecommendationRecordV2026 {
+    /**
+     * The type of recommendation. \"SED\" indicates a suggested description recommendation; \"privilege\" indicates a privilege-level recommendation.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'recordType'?: EntitlementRecommendationRecordV2026RecordTypeV2026;
+    /**
+     * The unique identifier for this recommendation record.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'id'?: string;
+    /**
+     * The entitlement attribute name (e.g. \"groups\").
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'attribute'?: string | null;
+    /**
+     * The human-readable display name of the entitlement.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'displayName'?: string | null;
+    /**
+     * The internal name of the entitlement.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'name'?: string | null;
+    /**
+     * The ID of the source that owns this entitlement.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'sourceId'?: string;
+    /**
+     * The display name of the source that owns this entitlement.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'sourceName'?: string;
+    /**
+     * The current review status of the recommendation.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'status'?: string;
+    /**
+     * The entitlement type (e.g. \"group\").
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'type'?: string | null;
+    /**
+     * The entitlement value or identifier.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'value'?: string;
+    /**
+     * The current description of the entitlement, if one exists.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'description'?: string | null;
+    /**
+     * The AI-generated suggested description for the entitlement (SED records only).
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'suggestedDescription'?: string | null;
+    /**
+     * The current privilege level assigned to the entitlement.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'privilege'?: string | null;
+    /**
+     * The AI-suggested privilege level for the entitlement (privilege records only).
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'suggestedPrivilege'?: string | null;
+    /**
+     * The ID of the identity who approved this recommendation.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'approvedBy'?: string | null;
+    /**
+     * How the recommendation was approved (e.g. \"direct\").
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'approvedType'?: string | null;
+    /**
+     * The timestamp when the recommendation was approved.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'approvedWhen'?: string | null;
+    /**
+     * The timestamp when the LLM batch that generated this recommendation was created.
+     * @type {string}
+     * @memberof EntitlementRecommendationRecordV2026
+     */
+    'llmBatchCreatedAt'?: string | null;
+}
+
+export const EntitlementRecommendationRecordV2026RecordTypeV2026 = {
+    Sed: 'SED',
+    Privilege: 'privilege'
+} as const;
+
+export type EntitlementRecommendationRecordV2026RecordTypeV2026 = typeof EntitlementRecommendationRecordV2026RecordTypeV2026[keyof typeof EntitlementRecommendationRecordV2026RecordTypeV2026];
+
 /**
  * Entitlement including a specific set of access.
  * @export
@@ -19743,30 +20193,22 @@ export interface EntityCreatedByDTOV2026 {
 /**
  * 
  * @export
- * @interface ErrorMessageDto1V2026
+ * @interface ErrorBodyV2026
  */
-export interface ErrorMessageDto1V2026 {
+export interface ErrorBodyV2026 {
     /**
-     * The locale for the message text, a BCP 47 language tag.
+     * Machine-readable error code returned by the Intelligence Package service.
      * @type {string}
-     * @memberof ErrorMessageDto1V2026
+     * @memberof ErrorBodyV2026
      */
-    'locale'?: string | null;
-    /**
-     * 
-     * @type {LocaleOriginV2026}
-     * @memberof ErrorMessageDto1V2026
-     */
-    'localeOrigin'?: LocaleOriginV2026 | null;
+    'detailCode'?: string;
     /**
-     * Actual text of the error message in the indicated locale.
+     * Human-readable explanation of the error suitable for client logging.
      * @type {string}
-     * @memberof ErrorMessageDto1V2026
+     * @memberof ErrorBodyV2026
      */
-    'text'?: string;
+    'message'?: string;
 }
-
-
 /**
  * 
  * @export
@@ -19819,37 +20261,6 @@ export interface ErrorMessageV2026 {
      */
     'text'?: string;
 }
-/**
- * 
- * @export
- * @interface ErrorResponseDto1V2026
- */
-export interface ErrorResponseDto1V2026 {
-    /**
-     * Fine-grained error code providing more detail of the error.
-     * @type {string}
-     * @memberof ErrorResponseDto1V2026
-     */
-    'detailCode'?: string;
-    /**
-     * Unique tracking id for the error.
-     * @type {string}
-     * @memberof ErrorResponseDto1V2026
-     */
-    'trackingId'?: string;
-    /**
-     * Generic localized reason for error
-     * @type {Array<ErrorMessageDto1V2026>}
-     * @memberof ErrorResponseDto1V2026
-     */
-    'messages'?: Array<ErrorMessageDto1V2026>;
-    /**
-     * Plain-text descriptive reasons to provide additional detail to the text provided in the messages field
-     * @type {Array<ErrorMessageDto1V2026>}
-     * @memberof ErrorResponseDto1V2026
-     */
-    'causes'?: Array<ErrorMessageDto1V2026>;
-}
 /**
  * 
  * @export
@@ -26143,6 +26554,614 @@ export interface Int64StringKeyValuePairV2026 {
      */
     'value'?: string | null;
 }
+/**
+ * 
+ * @export
+ * @interface IntelAccessAccountWireV2026
+ */
+export interface IntelAccessAccountWireV2026 {
+    /**
+     * Unique account identifier in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'id': string;
+    /**
+     * Account name or login value on the correlated source.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'name': string;
+    /**
+     * Source metadata for the account as returned by List Accounts wire format.
+     * @type {IntelAccessSourceWireV2026}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'source'?: IntelAccessSourceWireV2026;
+    /**
+     * True when the account is administratively disabled on the source.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'disabled': boolean;
+    /**
+     * True when the account is locked from interactive sign-in on the source.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'locked': boolean;
+    /**
+     * True when the account is not correlated to an authoritative identity.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'uncorrelated': boolean;
+    /**
+     * True when the account is treated as authoritative for attribute synchronization.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'authoritative': boolean;
+    /**
+     * True when the account represents a non-interactive or system principal.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'systemAccount': boolean;
+    /**
+     * True when the account belongs to a machine or service identity.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'isMachine': boolean;
+    /**
+     * True when the account currently has one or more entitlements assigned.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'hasEntitlements': boolean;
+    /**
+     * True when an administrator manually correlated the account to an identity.
+     * @type {boolean}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'manuallyCorrelated': boolean;
+    /**
+     * Connector connection type identifier for the backing source system.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'connectionType': string;
+    /**
+     * Native identifier string on the source directory or application.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'nativeIdentity'?: string | null;
+    /**
+     * Timestamp when the account record was created in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'created': string;
+    /**
+     * Timestamp when the account record was last modified in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelAccessAccountWireV2026
+     */
+    'modified': string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelAccessSourceWireV2026
+ */
+export interface IntelAccessSourceWireV2026 {
+    /**
+     * Source identifier referenced by the account wire object.
+     * @type {string}
+     * @memberof IntelAccessSourceWireV2026
+     */
+    'id'?: string;
+    /**
+     * Human-readable source name shown in administrative consoles.
+     * @type {string}
+     * @memberof IntelAccessSourceWireV2026
+     */
+    'name'?: string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelHrefV2026
+ */
+export interface IntelHrefV2026 {
+    /**
+     * Target URI for the related Intelligence Package sub-resource or operation.
+     * @type {string}
+     * @memberof IntelHrefV2026
+     */
+    'href': string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelHumanV2026
+ */
+export interface IntelHumanV2026 {
+    /**
+     * Primary login or account alias for the human identity.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'alias': string;
+    /**
+     * Primary business email address for the human identity.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'email': string;
+    /**
+     * Current identity lifecycle status label from Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'identityStatus': string;
+    /**
+     * Lifecycle state name assigned through provisioning policy when present.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'lifecycleState'?: string | null;
+    /**
+     * Processing state for outstanding identity change operations when present.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'processingState'?: string | null;
+    /**
+     * True when the identity is marked protected from automated changes.
+     * @type {boolean}
+     * @memberof IntelHumanV2026
+     */
+    'isProtected': boolean;
+    /**
+     * Legacy manager identity identifier or display reference when assigned.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'manager'?: string | null;
+    /**
+     * Manager identity identifier when correlated in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'managerId'?: string | null;
+    /**
+     * Manager display name when available from identity services.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'managerName'?: string | null;
+    /**
+     * True when the identity is flagged as a people manager in the organization.
+     * @type {boolean}
+     * @memberof IntelHumanV2026
+     */
+    'isManager': boolean;
+    /**
+     * Timestamp of the last successful identity refresh from sources when known.
+     * @type {string}
+     * @memberof IntelHumanV2026
+     */
+    'lastRefreshAt'?: string | null;
+}
+/**
+ * 
+ * @export
+ * @interface IntelIdentityAccessBodyV2026
+ */
+export interface IntelIdentityAccessBodyV2026 {
+    /**
+     * Accounts for the identity in camelCase wire format from Shelby List Accounts.
+     * @type {Array<IntelAccessAccountWireV2026>}
+     * @memberof IntelIdentityAccessBodyV2026
+     */
+    'accounts': Array<IntelAccessAccountWireV2026>;
+    /**
+     * Privileged access items for the identity returned by SDS Search.
+     * @type {Array<IntelPrivilegedAccessItemWireV2026>}
+     * @memberof IntelIdentityAccessBodyV2026
+     */
+    'privilegedAccessItems': Array<IntelPrivilegedAccessItemWireV2026>;
+}
+/**
+ * 
+ * @export
+ * @interface IntelIdentityAccessHistoryBodyV2026
+ */
+export interface IntelIdentityAccessHistoryBodyV2026 {
+    /**
+     * Each event is relayed from identity-history. Schema varies by event type; consumers should treat unknown fields as opaque using additionalProperties. 
+     * @type {Array<{ [key: string]: any; }>}
+     * @memberof IntelIdentityAccessHistoryBodyV2026
+     */
+    'events': Array<{ [key: string]: any; }>;
+}
+/**
+ * 
+ * @export
+ * @interface IntelIdentityAmbiguousBodyV2026
+ */
+export interface IntelIdentityAmbiguousBodyV2026 {
+    /**
+     * Constant detail code indicating that more than one identity matched the filter.
+     * @type {string}
+     * @memberof IntelIdentityAmbiguousBodyV2026
+     */
+    'detailCode': IntelIdentityAmbiguousBodyV2026DetailCodeV2026;
+    /**
+     * Optional explanatory text describing why the filter was considered ambiguous.
+     * @type {string}
+     * @memberof IntelIdentityAmbiguousBodyV2026
+     */
+    'message'?: string;
+    /**
+     * Collection of identities that matched the ambiguous filter expression.
+     * @type {Array<IntelIdentityAmbiguousCandidateV2026>}
+     * @memberof IntelIdentityAmbiguousBodyV2026
+     */
+    'candidates': Array<IntelIdentityAmbiguousCandidateV2026>;
+}
+
+export const IntelIdentityAmbiguousBodyV2026DetailCodeV2026 = {
+    IdcIdentityAmbiguous: 'IDC_IDENTITY_AMBIGUOUS'
+} as const;
+
+export type IntelIdentityAmbiguousBodyV2026DetailCodeV2026 = typeof IntelIdentityAmbiguousBodyV2026DetailCodeV2026[keyof typeof IntelIdentityAmbiguousBodyV2026DetailCodeV2026];
+
+/**
+ * 
+ * @export
+ * @interface IntelIdentityAmbiguousCandidateV2026
+ */
+export interface IntelIdentityAmbiguousCandidateV2026 {
+    /**
+     * Identity identifier for one of the ambiguous matching identities.
+     * @type {string}
+     * @memberof IntelIdentityAmbiguousCandidateV2026
+     */
+    'id': string;
+    /**
+     * Display name for the ambiguous matching identity when available.
+     * @type {string}
+     * @memberof IntelIdentityAmbiguousCandidateV2026
+     */
+    'displayName'?: string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelIdentityLinksV2026
+ */
+export interface IntelIdentityLinksV2026 {
+    /**
+     * Hyperlink to the Intelligence Package access document for this identity.
+     * @type {IntelHrefV2026}
+     * @memberof IntelIdentityLinksV2026
+     */
+    'access': IntelHrefV2026;
+    /**
+     * Hyperlink to the Intelligence Package access history document for this identity.
+     * @type {IntelHrefV2026}
+     * @memberof IntelIdentityLinksV2026
+     */
+    'accessHistory': IntelHrefV2026;
+}
+/**
+ * 
+ * @export
+ * @interface IntelIdentityNotFoundBodyV2026
+ */
+export interface IntelIdentityNotFoundBodyV2026 {
+    /**
+     * Constant detail code indicating that no identity matched the supplied filter.
+     * @type {string}
+     * @memberof IntelIdentityNotFoundBodyV2026
+     */
+    'detailCode': IntelIdentityNotFoundBodyV2026DetailCodeV2026;
+    /**
+     * Optional explanatory text describing why no identity was found.
+     * @type {string}
+     * @memberof IntelIdentityNotFoundBodyV2026
+     */
+    'message'?: string;
+}
+
+export const IntelIdentityNotFoundBodyV2026DetailCodeV2026 = {
+    IdcIdentityNotFound: 'IDC_IDENTITY_NOT_FOUND'
+} as const;
+
+export type IntelIdentityNotFoundBodyV2026DetailCodeV2026 = typeof IntelIdentityNotFoundBodyV2026DetailCodeV2026[keyof typeof IntelIdentityNotFoundBodyV2026DetailCodeV2026];
+
+/**
+ * HUMAN responses include human, top-level subtype (NERM classification: Employee, Non Employee, or Cannot Determine), and _links (access and accessHistory only). MACHINE responses include machine and top-level subtype (connector subtype string); _links is omitted. 
+ * @export
+ * @interface IntelIdentityResponseV2026
+ */
+export interface IntelIdentityResponseV2026 {
+    /**
+     * Identity Security Cloud identifier for this identity.
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'id': string;
+    /**
+     * Discriminator indicating whether this identity is human or machine backed.
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'type': IntelIdentityResponseV2026TypeV2026;
+    /**
+     * Preferred display name for the identity across administrative experiences.
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'displayName'?: string;
+    /**
+     * Optional free-text description assigned to the identity profile when present.
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'description'?: string | null;
+    /**
+     * For HUMAN identities, NERM classification (Employee, Non Employee, or Cannot Determine). For MACHINE identities, connector subtype string from the authoritative source. 
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'subtype'?: string | null;
+    /**
+     * Serialized owner reference information when populated by upstream identity services.
+     * @type {string}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'owners'?: string | null;
+    /**
+     * Arbitrary SCIM-style attribute bag returned for the identity context view.
+     * @type {{ [key: string]: any; }}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'attributes'?: { [key: string]: any; };
+    /**
+     * Created and modified timestamps for the identity record in Identity Security Cloud.
+     * @type {IntelIdentityTimestampsV2026}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'timestamps': IntelIdentityTimestampsV2026;
+    /**
+     * Human identity extension payload when type is HUMAN.
+     * @type {IntelHumanV2026}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'human'?: IntelHumanV2026 | null;
+    /**
+     * Machine identity extension payload when type is MACHINE.
+     * @type {IntelMachineV2026}
+     * @memberof IntelIdentityResponseV2026
+     */
+    'machine'?: IntelMachineV2026 | null;
+    /**
+     * Hyperlinks to related Intelligence Package sub-resources; present for HUMAN only.
+     * @type {IntelIdentityLinksV2026}
+     * @memberof IntelIdentityResponseV2026
+     */
+    '_links'?: IntelIdentityLinksV2026 | null;
+}
+
+export const IntelIdentityResponseV2026TypeV2026 = {
+    Human: 'HUMAN',
+    Machine: 'MACHINE'
+} as const;
+
+export type IntelIdentityResponseV2026TypeV2026 = typeof IntelIdentityResponseV2026TypeV2026[keyof typeof IntelIdentityResponseV2026TypeV2026];
+
+/**
+ * 
+ * @export
+ * @interface IntelIdentityTimestampsV2026
+ */
+export interface IntelIdentityTimestampsV2026 {
+    /**
+     * Timestamp when the identity record was first created in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelIdentityTimestampsV2026
+     */
+    'createdAt': string;
+    /**
+     * Timestamp when the identity record was last modified in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelIdentityTimestampsV2026
+     */
+    'modifiedAt': string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelMachineSourceV2026
+ */
+export interface IntelMachineSourceV2026 {
+    /**
+     * Unique identifier of the correlated source in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelMachineSourceV2026
+     */
+    'id'?: string;
+    /**
+     * Display name of the source as configured in Identity Security Cloud.
+     * @type {string}
+     * @memberof IntelMachineSourceV2026
+     */
+    'name'?: string;
+    /**
+     * Connector or source type classification for the backing system.
+     * @type {string}
+     * @memberof IntelMachineSourceV2026
+     */
+    'type'?: string;
+}
+/**
+ * MACHINE-specific block; subtype is only on the top-level IntelIdentityResponse.
+ * @export
+ * @interface IntelMachineV2026
+ */
+export interface IntelMachineV2026 {
+    /**
+     * Business application name associated with the non-human identity.
+     * @type {string}
+     * @memberof IntelMachineV2026
+     */
+    'businessApplication'?: string;
+    /**
+     * Native identifier value on the authoritative source for the machine identity.
+     * @type {string}
+     * @memberof IntelMachineV2026
+     */
+    'nativeIdentity'?: string;
+    /**
+     * Optional globally unique identifier for the machine identity when assigned.
+     * @type {string}
+     * @memberof IntelMachineV2026
+     */
+    'uuid'?: string | null;
+    /**
+     * Identifier of the correlated source for this machine identity.
+     * @type {string}
+     * @memberof IntelMachineV2026
+     */
+    'sourceId'?: string;
+    /**
+     * Correlated source summary for the machine identity when available.
+     * @type {IntelMachineSourceV2026}
+     * @memberof IntelMachineV2026
+     */
+    'source'?: IntelMachineSourceV2026;
+    /**
+     * Dataset identifier used by machine identity correlation logic.
+     * @type {string}
+     * @memberof IntelMachineV2026
+     */
+    'datasetId'?: string;
+    /**
+     * True when a matching account still exists on the connected source.
+     * @type {boolean}
+     * @memberof IntelMachineV2026
+     */
+    'existsOnSource'?: boolean;
+    /**
+     * True when the machine identity was created through a manual administrative action.
+     * @type {boolean}
+     * @memberof IntelMachineV2026
+     */
+    'manuallyCreated'?: boolean;
+    /**
+     * True when the machine identity attributes were manually edited after creation.
+     * @type {boolean}
+     * @memberof IntelMachineV2026
+     */
+    'manuallyEdited'?: boolean;
+    /**
+     * Structured owner references for the machine identity when populated by the service.
+     * @type {object}
+     * @memberof IntelMachineV2026
+     */
+    'owners'?: object;
+    /**
+     * Entitlements or fine-grained rights linked to the machine identity when available.
+     * @type {Array<object>}
+     * @memberof IntelMachineV2026
+     */
+    'userEntitlements'?: Array<object>;
+}
+/**
+ * Source metadata associated with the privileged access item when present.
+ * @export
+ * @interface IntelPrivilegedAccessItemWireSourceV2026
+ */
+export interface IntelPrivilegedAccessItemWireSourceV2026 {
+    /**
+     * Human-readable source name for the privileged access item.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireSourceV2026
+     */
+    'name'?: string;
+    /**
+     * Source identifier for the privileged access item.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireSourceV2026
+     */
+    'id'?: string;
+}
+/**
+ * 
+ * @export
+ * @interface IntelPrivilegedAccessItemWireV2026
+ */
+export interface IntelPrivilegedAccessItemWireV2026 {
+    /**
+     * True when SDS Search classifies this item as privileged access for the identity.
+     * @type {boolean}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'privileged': boolean;
+    /**
+     * Display label for the privileged access item in administrative experiences.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'displayName'?: string;
+    /**
+     * Technical name of the privileged access item from SDS Search.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'name'?: string;
+    /**
+     * True when the privileged item is modeled as a standalone entitlement or access object.
+     * @type {boolean}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'standalone'?: boolean;
+    /**
+     * Identifier of the privileged access item returned by SDS Search.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'id': string;
+    /**
+     * 
+     * @type {IntelPrivilegedAccessItemWireSourceV2026}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'source'?: IntelPrivilegedAccessItemWireSourceV2026;
+    /**
+     * Source attribute name that carries the privileged value when applicable.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'attribute'?: string;
+    /**
+     * Object type classification from SDS Search (for example ENTITLEMENT).
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'type': string;
+    /**
+     * Privileged value on the source attribute when applicable.
+     * @type {string}
+     * @memberof IntelPrivilegedAccessItemWireV2026
+     */
+    'value'?: string;
+}
 /**
  * 
  * @export
@@ -26494,6 +27513,12 @@ export interface JitActivationActivateResponseV2026 {
      * @memberof JitActivationActivateResponseV2026
      */
     'id': string;
+    /**
+     * Persistent activation record identifier for this JIT activation.
+     * @type {string}
+     * @memberof JitActivationActivateResponseV2026
+     */
+    'activationId': string;
     /**
      * Entitlement connection identifier for the activation.
      * @type {string}
@@ -26546,6 +27571,12 @@ export interface JitActivationDeactivateResponseV2026 {
      * @memberof JitActivationDeactivateResponseV2026
      */
     'id': string;
+    /**
+     * Persistent activation record identifier for this JIT activation.
+     * @type {string}
+     * @memberof JitActivationDeactivateResponseV2026
+     */
+    'activationId': string;
     /**
      * Entitlement connection identifier for the activation.
      * @type {string}
@@ -26598,6 +27629,12 @@ export interface JitActivationExtendResponseV2026 {
      * @memberof JitActivationExtendResponseV2026
      */
     'id': string;
+    /**
+     * Persistent activation record identifier for this JIT activation.
+     * @type {string}
+     * @memberof JitActivationExtendResponseV2026
+     */
+    'activationId': string;
     /**
      * Entitlement connection identifier for the activation.
      * @type {string}
@@ -27579,6 +28616,12 @@ export interface ListIdentityAccessItems200ResponseInnerV2026 {
      * @memberof ListIdentityAccessItems200ResponseInnerV2026
      */
     'appRefs': Array<AccessItemAccessProfileResponseAppRefsInnerV2026>;
+    /**
+     * the date the access profile will be assigned to the specified identity, in case requested with a future start date
+     * @type {string}
+     * @memberof ListIdentityAccessItems200ResponseInnerV2026
+     */
+    'startDate'?: string | null;
     /**
      * the date the role is no longer assigned to the specified identity
      * @type {string}
@@ -31532,6 +32575,63 @@ export interface MfaOktaConfigV2026 {
      */
     'identityAttribute'?: string | null;
 }
+/**
+ * Request body listing machine identity or machine account IDs for a bulk operation.
+ * @export
+ * @interface MisBulkRequestV2026
+ */
+export interface MisBulkRequestV2026 {
+    /**
+     * Machine identity or machine account IDs to include in the bulk operation.
+     * @type {Array<string>}
+     * @memberof MisBulkRequestV2026
+     */
+    'ids': Array<string>;
+}
+/**
+ * Per-ID result for a machine identity or machine account bulk operation.
+ * @export
+ * @interface MisBulkResponseV2026
+ */
+export interface MisBulkResponseV2026 {
+    /**
+     * Machine identity or machine account ID from the request.
+     * @type {string}
+     * @memberof MisBulkResponseV2026
+     */
+    'id': string;
+    /**
+     * HTTP status code for this ID. For example, 200 indicates success, 404 indicates the resource was not found or is not accessible to the caller, and 409 indicates a conflict such as a duplicate ID in the batch.
+     * @type {number}
+     * @memberof MisBulkResponseV2026
+     */
+    'status': number;
+    /**
+     * Human-readable detail for this result.
+     * @type {string}
+     * @memberof MisBulkResponseV2026
+     */
+    'message'?: string;
+}
+/**
+ * Request body for applying the same JSON Patch document to multiple machine identities or machine accounts.
+ * @export
+ * @interface MisBulkUpdateRequestV2026
+ */
+export interface MisBulkUpdateRequestV2026 {
+    /**
+     * Machine identity or machine account IDs to update.
+     * @type {Array<string>}
+     * @memberof MisBulkUpdateRequestV2026
+     */
+    'ids': Array<string>;
+    /**
+     * JSON Patch operations to apply to each ID in the request (RFC 6902).
+     * @type {Array<JsonPatchOperationV2026>}
+     * @memberof MisBulkUpdateRequestV2026
+     */
+    'jsonPatch': Array<JsonPatchOperationV2026>;
+}
 /**
  * This represents a Multi-Host Integration template type.
  * @export
@@ -36160,6 +37260,116 @@ export const PrivilegeCriteriaDTOV2026PrivilegeLevelV2026 = {
 
 export type PrivilegeCriteriaDTOV2026PrivilegeLevelV2026 = typeof PrivilegeCriteriaDTOV2026PrivilegeLevelV2026[keyof typeof PrivilegeCriteriaDTOV2026PrivilegeLevelV2026];
 
+/**
+ * A group of entitlement instances that share the same entitlement name and connector type, aggregated for privileged-access review.
+ * @export
+ * @interface PrivilegedRecommendationGroupV2026
+ */
+export interface PrivilegedRecommendationGroupV2026 {
+    /**
+     * The name of the entitlement shared across all instances in this group.
+     * @type {string}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'entitlementName'?: string;
+    /**
+     * The connector type associated with all instances in this group.
+     * @type {string}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'connectorType'?: string;
+    /**
+     * A decimal string representing the confidence score of the privilege recommendation (0.0-1.0).
+     * @type {string}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'recommendationScore'?: string;
+    /**
+     * The number of organizations in which this entitlement appears as privileged.
+     * @type {number}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'orgCount'?: number;
+    /**
+     * The total number of individual entitlement instances in this group.
+     * @type {number}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'instanceCount'?: number;
+    /**
+     * The individual entitlement instances belonging to this group.
+     * @type {Array<PrivilegedRecommendationInstanceV2026>}
+     * @memberof PrivilegedRecommendationGroupV2026
+     */
+    'instances'?: Array<PrivilegedRecommendationInstanceV2026>;
+}
+/**
+ * An individual entitlement instance within a privileged recommendation group.
+ * @export
+ * @interface PrivilegedRecommendationInstanceV2026
+ */
+export interface PrivilegedRecommendationInstanceV2026 {
+    /**
+     * The unique identifier for this entitlement instance.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'id'?: string;
+    /**
+     * The entitlement attribute name.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'attribute'?: string;
+    /**
+     * The ID of the source that owns this entitlement.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'sourceId'?: string;
+    /**
+     * The display name of the source.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'sourceName'?: string;
+    /**
+     * The entitlement type.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'type'?: string;
+    /**
+     * The entitlement value or distinguished name.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'value'?: string;
+    /**
+     * The current review status of this instance.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'status'?: string;
+    /**
+     * The currently assigned privilege level, if any.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'privilegeLevel'?: string | null;
+    /**
+     * The current description of the entitlement, if one exists.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'description'?: string | null;
+    /**
+     * The timestamp when this instance was recommended.
+     * @type {string}
+     * @memberof PrivilegedRecommendationInstanceV2026
+     */
+    'recommendedAt'?: string;
+}
 /**
  * 
  * @export
@@ -36327,6 +37537,109 @@ export const ProductV2026OrgTypeV2026 = {
 
 export type ProductV2026OrgTypeV2026 = typeof ProductV2026OrgTypeV2026[keyof typeof ProductV2026OrgTypeV2026];
 
+/**
+ * A prompt security insight event.
+ * @export
+ * @interface PromptInsightV2026
+ */
+export interface PromptInsightV2026 {
+    /**
+     * Event time in UTC.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'timestamp'?: string;
+    /**
+     * User identifier or display name.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'user'?: string;
+    /**
+     * The AI agent that processed the prompt.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'agent'?: string;
+    /**
+     * The policy decision applied to the prompt.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'policyDecision'?: PromptInsightV2026PolicyDecisionV2026;
+    /**
+     * The category of the prompt security finding.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'category'?: PromptInsightV2026CategoryV2026;
+    /**
+     * The severity of the prompt security finding.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'severity'?: PromptInsightV2026SeverityV2026;
+    /**
+     * Human-readable or structured reason for the policy decision.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'reason'?: string;
+    /**
+     * The rule that matched the prompt.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'rule'?: string;
+    /**
+     * The policy that matched the prompt.
+     * @type {string}
+     * @memberof PromptInsightV2026
+     */
+    'policy'?: string;
+}
+
+export const PromptInsightV2026PolicyDecisionV2026 = {
+    Allowed: 'ALLOWED',
+    Redacted: 'REDACTED'
+} as const;
+
+export type PromptInsightV2026PolicyDecisionV2026 = typeof PromptInsightV2026PolicyDecisionV2026[keyof typeof PromptInsightV2026PolicyDecisionV2026];
+export const PromptInsightV2026CategoryV2026 = {
+    Anomalies: 'ANOMALIES',
+    DataUploads: 'DATA_UPLOADS',
+    McpToolCalls: 'MCP_TOOL_CALLS'
+} as const;
+
+export type PromptInsightV2026CategoryV2026 = typeof PromptInsightV2026CategoryV2026[keyof typeof PromptInsightV2026CategoryV2026];
+export const PromptInsightV2026SeverityV2026 = {
+    Low: 'LOW',
+    Medium: 'MEDIUM',
+    High: 'HIGH',
+    Critical: 'CRITICAL'
+} as const;
+
+export type PromptInsightV2026SeverityV2026 = typeof PromptInsightV2026SeverityV2026[keyof typeof PromptInsightV2026SeverityV2026];
+
+/**
+ * Aggregate prompt insights metrics for the requested time window.
+ * @export
+ * @interface PromptInsightsMetricsV2026
+ */
+export interface PromptInsightsMetricsV2026 {
+    /**
+     * Count of prompts scanned in the interval.
+     * @type {number}
+     * @memberof PromptInsightsMetricsV2026
+     */
+    'promptsScanned'?: number;
+    /**
+     * Count of prompts redacted in the interval.
+     * @type {number}
+     * @memberof PromptInsightsMetricsV2026
+     */
+    'promptsRedacted'?: number;
+}
 /**
  * 
  * @export
@@ -48836,7 +50149,7 @@ export interface SpConfigExportJobStatusV2026 {
      * @type {string}
      * @memberof SpConfigExportJobStatusV2026
      */
-    'expiration': string;
+    'expiration'?: string;
     /**
      * The time the job was started.
      * @type {string}
@@ -48908,7 +50221,7 @@ export interface SpConfigExportJobV2026 {
      * @type {string}
      * @memberof SpConfigExportJobV2026
      */
-    'expiration': string;
+    'expiration'?: string;
     /**
      * The time the job was started.
      * @type {string}
@@ -49017,7 +50330,7 @@ export interface SpConfigImportJobStatusV2026 {
      * @type {string}
      * @memberof SpConfigImportJobStatusV2026
      */
-    'expiration': string;
+    'expiration'?: string;
     /**
      * The time the job was started.
      * @type {string}
@@ -49108,7 +50421,7 @@ export interface SpConfigJobV2026 {
      * @type {string}
      * @memberof SpConfigJobV2026
      */
-    'expiration': string;
+    'expiration'?: string;
     /**
      * The time the job was started.
      * @type {string}
@@ -50711,7 +52024,7 @@ export interface TaskStatusV2026 {
      * @type {string}
      * @memberof TaskStatusV2026
      */
-    'modified': string;
+    'modified': string | null;
     /**
      * Launch date of the task this TaskStatus represents
      * @type {string}
@@ -63031,9 +64344,9 @@ export const ApprovalsV2026ApiAxiosParamCreator = function (configuration?: Conf
             };
         },
         /**
-         * Gets a list of approvals. For lookups by access request ID please use the following: /generic-approvals?filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\" Absence of all query parameters for non admins will will default to mine=true. Admin will default to mine=false. Absence of all query parameters for admins will return all approvals in the org.
+         * Gets a list of approvals.  One of the following query parameters should be present: \'mine\', \'approverId\', \'requesterId\', \'requesteeId\'.  The absence of all query parameters for non admins will default to mine=true (which is the equivalent of \'approverId=[your_identity_id]\')  while admins will default to mine=false (which will show all approvals in the org).  For lookups by access request ID please use the following:  \'/generic-approvals?mine=false&filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\"\'
          * @summary Get approvals
-         * @param {boolean} [mine] Returns the list of approvals for the current caller. Defaults to false if admin, true otherwise.
+         * @param {boolean} [mine] Determines whether to return the list of approvals assigned to the current caller or all approvals in the org. Defaults to false if admin, true otherwise (which is the equivalent of \&#39;approverId&#x3D;[your_identity_id]\&#39;).
          * @param {string} [requesterId] Returns the list of approvals for a given requester ID. Must match the calling user\&#39;s identity ID unless they are an admin.
          * @param {string} [requesteeId] Returns the list of approvals for a given requesteeId ID. Must match the calling user\&#39;s identity ID unless they are an admin.
          * @param {string} [approverId] Returns the list of approvals for a given approverId ID. Must match the calling user\&#39;s identity ID unless they are an admin.
@@ -63043,7 +64356,7 @@ export const ApprovalsV2026ApiAxiosParamCreator = function (configuration?: Conf
          * @param {boolean} [includeApprovers] If set to true in the query, the approval requests returned will include approvers.
          * @param {boolean} [includeReassignmentHistory] If set to true in the query, the approval requests returned will include reassignment history.
          * @param {boolean} [includeBatchInfo] If set to true in the query, the approval requests returned will include batch information.
-         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **approvalId**: *eq, ne, in, co, sw*  **tenantId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*
+         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetName**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **approvalId**: *eq, ne, in, co, sw*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*
          * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
          * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
          * @param {*} [axiosOptions] Override http request option.
@@ -63597,9 +64910,9 @@ export const ApprovalsV2026ApiFp = function(configuration?: Configuration) {
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
         /**
-         * Gets a list of approvals. For lookups by access request ID please use the following: /generic-approvals?filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\" Absence of all query parameters for non admins will will default to mine=true. Admin will default to mine=false. Absence of all query parameters for admins will return all approvals in the org.
+         * Gets a list of approvals.  One of the following query parameters should be present: \'mine\', \'approverId\', \'requesterId\', \'requesteeId\'.  The absence of all query parameters for non admins will default to mine=true (which is the equivalent of \'approverId=[your_identity_id]\')  while admins will default to mine=false (which will show all approvals in the org).  For lookups by access request ID please use the following:  \'/generic-approvals?mine=false&filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\"\'
          * @summary Get approvals
-         * @param {boolean} [mine] Returns the list of approvals for the current caller. Defaults to false if admin, true otherwise.
+         * @param {boolean} [mine] Determines whether to return the list of approvals assigned to the current caller or all approvals in the org. Defaults to false if admin, true otherwise (which is the equivalent of \&#39;approverId&#x3D;[your_identity_id]\&#39;).
          * @param {string} [requesterId] Returns the list of approvals for a given requester ID. Must match the calling user\&#39;s identity ID unless they are an admin.
          * @param {string} [requesteeId] Returns the list of approvals for a given requesteeId ID. Must match the calling user\&#39;s identity ID unless they are an admin.
          * @param {string} [approverId] Returns the list of approvals for a given approverId ID. Must match the calling user\&#39;s identity ID unless they are an admin.
@@ -63609,7 +64922,7 @@ export const ApprovalsV2026ApiFp = function(configuration?: Configuration) {
          * @param {boolean} [includeApprovers] If set to true in the query, the approval requests returned will include approvers.
          * @param {boolean} [includeReassignmentHistory] If set to true in the query, the approval requests returned will include reassignment history.
          * @param {boolean} [includeBatchInfo] If set to true in the query, the approval requests returned will include batch information.
-         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **approvalId**: *eq, ne, in, co, sw*  **tenantId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*
+         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetName**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **approvalId**: *eq, ne, in, co, sw*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*
          * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
          * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
          * @param {*} [axiosOptions] Override http request option.
@@ -63802,7 +65115,7 @@ export const ApprovalsV2026ApiFactory = function (configuration?: Configuration,
             return localVarFp.getApproval(requestParameters.id, axiosOptions).then((request) => request(axios, basePath));
         },
         /**
-         * Gets a list of approvals. For lookups by access request ID please use the following: /generic-approvals?filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\" Absence of all query parameters for non admins will will default to mine=true. Admin will default to mine=false. Absence of all query parameters for admins will return all approvals in the org.
+         * Gets a list of approvals.  One of the following query parameters should be present: \'mine\', \'approverId\', \'requesterId\', \'requesteeId\'.  The absence of all query parameters for non admins will default to mine=true (which is the equivalent of \'approverId=[your_identity_id]\')  while admins will default to mine=false (which will show all approvals in the org).  For lookups by access request ID please use the following:  \'/generic-approvals?mine=false&filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\"\'
          * @summary Get approvals
          * @param {ApprovalsV2026ApiGetApprovalsRequest} requestParameters Request parameters.
          * @param {*} [axiosOptions] Override http request option.
@@ -64006,7 +65319,7 @@ export interface ApprovalsV2026ApiGetApprovalRequest {
  */
 export interface ApprovalsV2026ApiGetApprovalsRequest {
     /**
-     * Returns the list of approvals for the current caller. Defaults to false if admin, true otherwise.
+     * Determines whether to return the list of approvals assigned to the current caller or all approvals in the org. Defaults to false if admin, true otherwise (which is the equivalent of \&#39;approverId&#x3D;[your_identity_id]\&#39;).
      * @type {boolean}
      * @memberof ApprovalsV2026ApiGetApprovals
      */
@@ -64076,7 +65389,7 @@ export interface ApprovalsV2026ApiGetApprovalsRequest {
     readonly includeBatchInfo?: boolean
 
     /**
-     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **approvalId**: *eq, ne, in, co, sw*  **tenantId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **status**: *eq, ne, in, co, sw*  **name**: *eq, ne, in, co, sw*  **priority**: *eq, ne, in, co, sw*  **type**: *eq, ne, in, co, sw*  **medium**: *eq, ne, in, co, sw*  **description**: *eq, ne, in, co, sw*  **batchId**: *eq, ne, in, co, sw*  **createdDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **dueDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **completedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **search**: *eq, ne, in, co, sw*  **referenceId**: *eq, ne, in, co, sw*  **referenceType**: *eq, ne, in, co, sw*  **referenceName**: *eq, ne, in, co, sw*  **requestedTargetId**: *eq, ne, in, co, sw*  **requestedTargetType**: *eq, ne, in, co, sw*  **requestedTargetName**: *eq, ne, in, co, sw*  **requestedTargetRequestType**: *eq, ne, in, co, sw*  **modifiedDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **decisionDate**: *eq, ne, in, co, sw, gt, ge, lt, le*  **approvalId**: *eq, ne, in, co, sw*  **requesterId**: *eq, ne, in, co, sw*  **requesteeId**: *eq, ne, in, co, sw*  **approverId**: *eq, ne, in, co, sw*
      * @type {string}
      * @memberof ApprovalsV2026ApiGetApprovals
      */
@@ -64331,7 +65644,7 @@ export class ApprovalsV2026Api extends BaseAPI {
     }
 
     /**
-     * Gets a list of approvals. For lookups by access request ID please use the following: /generic-approvals?filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\" Absence of all query parameters for non admins will will default to mine=true. Admin will default to mine=false. Absence of all query parameters for admins will return all approvals in the org.
+     * Gets a list of approvals.  One of the following query parameters should be present: \'mine\', \'approverId\', \'requesterId\', \'requesteeId\'.  The absence of all query parameters for non admins will default to mine=true (which is the equivalent of \'approverId=[your_identity_id]\')  while admins will default to mine=false (which will show all approvals in the org).  For lookups by access request ID please use the following:  \'/generic-approvals?mine=false&filters=referenceType+eq+\"accessRequestId\"+and+referenceId+eq+\"12345678901234567890123456789012\"\'
      * @summary Get approvals
      * @param {ApprovalsV2026ApiGetApprovalsRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
@@ -101981,6 +103294,372 @@ export class IdentityProfilesV2026Api extends BaseAPI {
 
 
 
+/**
+ * IntelligencePackageV2026Api - axios parameter creator
+ * @export
+ */
+export const IntelligencePackageV2026ApiAxiosParamCreator = function (configuration?: Configuration) {
+    return {
+        /**
+         * Requires tenant license idn:response-and-remediation.  Client-facing pagination (limit, offset, count) is not supported on this route. The service issues one Shelby List Accounts request at the upstream maximum page size and one SDS Search request per identity. 
+         * @summary Accounts merged with privileged data
+         * @param {string} identityID Non-empty identity id path segment for Intelligence Package sub-resources.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getIntelIdentityAccess: async (identityID: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'identityID' is not null or undefined
+            assertParamExists('getIntelIdentityAccess', 'identityID', identityID)
+            const localVarPath = `/intelligence/identities/{identityID}/access`
+                .replace(`{${"identityID"}}`, encodeURIComponent(String(identityID)));
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Events are relayed from identity-history; optional limit, offset, and count are forwarded to the upstream when supplied. 
+         * @summary Return identity access-history events
+         * @param {string} identityID Non-empty identity id path segment for Intelligence Package sub-resources.
+         * @param {number} [limit] Maximum number of historical events to return in this page of results.
+         * @param {number} [offset] Zero-based index of the first event row to return for pagination.
+         * @param {boolean} [count] When true, the service may include total count metadata alongside the result list.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getIntelIdentityAccessHistory: async (identityID: string, limit?: number, offset?: number, count?: boolean, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'identityID' is not null or undefined
+            assertParamExists('getIntelIdentityAccessHistory', 'identityID', identityID)
+            const localVarPath = `/intelligence/identities/{identityID}/access-history`
+                .replace(`{${"identityID"}}`, encodeURIComponent(String(identityID)));
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (limit !== undefined) {
+                localVarQueryParameter['limit'] = limit;
+            }
+
+            if (offset !== undefined) {
+                localVarQueryParameter['offset'] = offset;
+            }
+
+            if (count !== undefined) {
+                localVarQueryParameter['count'] = count;
+            }
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Returns the Intelligence Package envelope for the identity that matches the SCIM-style filters expression. Supported queryable fields are id and email only.  A single match returns HTTP 200 with IntelIdentityResponse.  Zero matches returns HTTP 404 with detailCode IDC_IDENTITY_NOT_FOUND.   Multiple matches returns HTTP 409 with detailCode IDC_IDENTITY_AMBIGUOUS and candidates listing each match. 
+         * @summary Resolve one identity by filter
+         * @param {string} filters Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq*  **email**: *eq*
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        searchIntelIdentities: async (filters: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'filters' is not null or undefined
+            assertParamExists('searchIntelIdentities', 'filters', filters)
+            const localVarPath = `/intelligence/identities`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (filters !== undefined) {
+                localVarQueryParameter['filters'] = filters;
+            }
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+    }
+};
+
+/**
+ * IntelligencePackageV2026Api - functional programming interface
+ * @export
+ */
+export const IntelligencePackageV2026ApiFp = function(configuration?: Configuration) {
+    const localVarAxiosParamCreator = IntelligencePackageV2026ApiAxiosParamCreator(configuration)
+    return {
+        /**
+         * Requires tenant license idn:response-and-remediation.  Client-facing pagination (limit, offset, count) is not supported on this route. The service issues one Shelby List Accounts request at the upstream maximum page size and one SDS Search request per identity. 
+         * @summary Accounts merged with privileged data
+         * @param {string} identityID Non-empty identity id path segment for Intelligence Package sub-resources.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async getIntelIdentityAccess(identityID: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<IntelIdentityAccessBodyV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.getIntelIdentityAccess(identityID, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['IntelligencePackageV2026Api.getIntelIdentityAccess']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Events are relayed from identity-history; optional limit, offset, and count are forwarded to the upstream when supplied. 
+         * @summary Return identity access-history events
+         * @param {string} identityID Non-empty identity id path segment for Intelligence Package sub-resources.
+         * @param {number} [limit] Maximum number of historical events to return in this page of results.
+         * @param {number} [offset] Zero-based index of the first event row to return for pagination.
+         * @param {boolean} [count] When true, the service may include total count metadata alongside the result list.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async getIntelIdentityAccessHistory(identityID: string, limit?: number, offset?: number, count?: boolean, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<IntelIdentityAccessHistoryBodyV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.getIntelIdentityAccessHistory(identityID, limit, offset, count, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['IntelligencePackageV2026Api.getIntelIdentityAccessHistory']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Returns the Intelligence Package envelope for the identity that matches the SCIM-style filters expression. Supported queryable fields are id and email only.  A single match returns HTTP 200 with IntelIdentityResponse.  Zero matches returns HTTP 404 with detailCode IDC_IDENTITY_NOT_FOUND.   Multiple matches returns HTTP 409 with detailCode IDC_IDENTITY_AMBIGUOUS and candidates listing each match. 
+         * @summary Resolve one identity by filter
+         * @param {string} filters Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq*  **email**: *eq*
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async searchIntelIdentities(filters: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<IntelIdentityResponseV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.searchIntelIdentities(filters, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['IntelligencePackageV2026Api.searchIntelIdentities']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+    }
+};
+
+/**
+ * IntelligencePackageV2026Api - factory interface
+ * @export
+ */
+export const IntelligencePackageV2026ApiFactory = function (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) {
+    const localVarFp = IntelligencePackageV2026ApiFp(configuration)
+    return {
+        /**
+         * Requires tenant license idn:response-and-remediation.  Client-facing pagination (limit, offset, count) is not supported on this route. The service issues one Shelby List Accounts request at the upstream maximum page size and one SDS Search request per identity. 
+         * @summary Accounts merged with privileged data
+         * @param {IntelligencePackageV2026ApiGetIntelIdentityAccessRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getIntelIdentityAccess(requestParameters: IntelligencePackageV2026ApiGetIntelIdentityAccessRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<IntelIdentityAccessBodyV2026> {
+            return localVarFp.getIntelIdentityAccess(requestParameters.identityID, axiosOptions).then((request) => request(axios, basePath));
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Events are relayed from identity-history; optional limit, offset, and count are forwarded to the upstream when supplied. 
+         * @summary Return identity access-history events
+         * @param {IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getIntelIdentityAccessHistory(requestParameters: IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<IntelIdentityAccessHistoryBodyV2026> {
+            return localVarFp.getIntelIdentityAccessHistory(requestParameters.identityID, requestParameters.limit, requestParameters.offset, requestParameters.count, axiosOptions).then((request) => request(axios, basePath));
+        },
+        /**
+         * Requires tenant license idn:response-and-remediation.  Returns the Intelligence Package envelope for the identity that matches the SCIM-style filters expression. Supported queryable fields are id and email only.  A single match returns HTTP 200 with IntelIdentityResponse.  Zero matches returns HTTP 404 with detailCode IDC_IDENTITY_NOT_FOUND.   Multiple matches returns HTTP 409 with detailCode IDC_IDENTITY_AMBIGUOUS and candidates listing each match. 
+         * @summary Resolve one identity by filter
+         * @param {IntelligencePackageV2026ApiSearchIntelIdentitiesRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        searchIntelIdentities(requestParameters: IntelligencePackageV2026ApiSearchIntelIdentitiesRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<IntelIdentityResponseV2026> {
+            return localVarFp.searchIntelIdentities(requestParameters.filters, axiosOptions).then((request) => request(axios, basePath));
+        },
+    };
+};
+
+/**
+ * Request parameters for getIntelIdentityAccess operation in IntelligencePackageV2026Api.
+ * @export
+ * @interface IntelligencePackageV2026ApiGetIntelIdentityAccessRequest
+ */
+export interface IntelligencePackageV2026ApiGetIntelIdentityAccessRequest {
+    /**
+     * Non-empty identity id path segment for Intelligence Package sub-resources.
+     * @type {string}
+     * @memberof IntelligencePackageV2026ApiGetIntelIdentityAccess
+     */
+    readonly identityID: string
+}
+
+/**
+ * Request parameters for getIntelIdentityAccessHistory operation in IntelligencePackageV2026Api.
+ * @export
+ * @interface IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest
+ */
+export interface IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest {
+    /**
+     * Non-empty identity id path segment for Intelligence Package sub-resources.
+     * @type {string}
+     * @memberof IntelligencePackageV2026ApiGetIntelIdentityAccessHistory
+     */
+    readonly identityID: string
+
+    /**
+     * Maximum number of historical events to return in this page of results.
+     * @type {number}
+     * @memberof IntelligencePackageV2026ApiGetIntelIdentityAccessHistory
+     */
+    readonly limit?: number
+
+    /**
+     * Zero-based index of the first event row to return for pagination.
+     * @type {number}
+     * @memberof IntelligencePackageV2026ApiGetIntelIdentityAccessHistory
+     */
+    readonly offset?: number
+
+    /**
+     * When true, the service may include total count metadata alongside the result list.
+     * @type {boolean}
+     * @memberof IntelligencePackageV2026ApiGetIntelIdentityAccessHistory
+     */
+    readonly count?: boolean
+}
+
+/**
+ * Request parameters for searchIntelIdentities operation in IntelligencePackageV2026Api.
+ * @export
+ * @interface IntelligencePackageV2026ApiSearchIntelIdentitiesRequest
+ */
+export interface IntelligencePackageV2026ApiSearchIntelIdentitiesRequest {
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **id**: *eq*  **email**: *eq*
+     * @type {string}
+     * @memberof IntelligencePackageV2026ApiSearchIntelIdentities
+     */
+    readonly filters: string
+}
+
+/**
+ * IntelligencePackageV2026Api - object-oriented interface
+ * @export
+ * @class IntelligencePackageV2026Api
+ * @extends {BaseAPI}
+ */
+export class IntelligencePackageV2026Api extends BaseAPI {
+    /**
+     * Requires tenant license idn:response-and-remediation.  Client-facing pagination (limit, offset, count) is not supported on this route. The service issues one Shelby List Accounts request at the upstream maximum page size and one SDS Search request per identity. 
+     * @summary Accounts merged with privileged data
+     * @param {IntelligencePackageV2026ApiGetIntelIdentityAccessRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof IntelligencePackageV2026Api
+     */
+    public getIntelIdentityAccess(requestParameters: IntelligencePackageV2026ApiGetIntelIdentityAccessRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return IntelligencePackageV2026ApiFp(this.configuration).getIntelIdentityAccess(requestParameters.identityID, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
+    /**
+     * Requires tenant license idn:response-and-remediation.  Events are relayed from identity-history; optional limit, offset, and count are forwarded to the upstream when supplied. 
+     * @summary Return identity access-history events
+     * @param {IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof IntelligencePackageV2026Api
+     */
+    public getIntelIdentityAccessHistory(requestParameters: IntelligencePackageV2026ApiGetIntelIdentityAccessHistoryRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return IntelligencePackageV2026ApiFp(this.configuration).getIntelIdentityAccessHistory(requestParameters.identityID, requestParameters.limit, requestParameters.offset, requestParameters.count, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
+    /**
+     * Requires tenant license idn:response-and-remediation.  Returns the Intelligence Package envelope for the identity that matches the SCIM-style filters expression. Supported queryable fields are id and email only.  A single match returns HTTP 200 with IntelIdentityResponse.  Zero matches returns HTTP 404 with detailCode IDC_IDENTITY_NOT_FOUND.   Multiple matches returns HTTP 409 with detailCode IDC_IDENTITY_AMBIGUOUS and candidates listing each match. 
+     * @summary Resolve one identity by filter
+     * @param {IntelligencePackageV2026ApiSearchIntelIdentitiesRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof IntelligencePackageV2026Api
+     */
+    public searchIntelIdentities(requestParameters: IntelligencePackageV2026ApiSearchIntelIdentitiesRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return IntelligencePackageV2026ApiFp(this.configuration).searchIntelIdentities(requestParameters.filters, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+}
+
+
+
 /**
  * JITAccessV2026Api - axios parameter creator
  * @export
@@ -105971,7 +107650,121 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
             setSearchParams(localVarUrlObj, localVarQueryParameter);
             let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
-            localVarRequestOptions.data = serializeDataIfNeeded(createMachineAccountSubtypeRequestV2026, localVarRequestOptions, configuration)
+            localVarRequestOptions.data = serializeDataIfNeeded(createMachineAccountSubtypeRequestV2026, localVarRequestOptions, configuration)
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Delete a machine account subtype by source ID and technical name.
+         * @summary Delete subtype
+         * @param {string} sourceId The ID of the source.
+         * @param {string} technicalName The technical name of the subtype.
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        deleteMachineAccountSubtypeByTechnicalName: async (sourceId: string, technicalName: string, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'sourceId' is not null or undefined
+            assertParamExists('deleteMachineAccountSubtypeByTechnicalName', 'sourceId', sourceId)
+            // verify required parameter 'technicalName' is not null or undefined
+            assertParamExists('deleteMachineAccountSubtypeByTechnicalName', 'technicalName', technicalName)
+            if (xSailPointExperimental === undefined) {
+                xSailPointExperimental = 'true';
+            }
+            
+            const localVarPath = `/sources/{sourceId}/subtypes/{technicalName}`
+                .replace(`{${"sourceId"}}`, encodeURIComponent(String(sourceId)))
+                .replace(`{${"technicalName"}}`, encodeURIComponent(String(technicalName)));
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'DELETE', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            if (xSailPointExperimental != null) {
+                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
+            }
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Submits an asynchronous request to disable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:disable** right may still disable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk disable machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        disableMachineAccountsInBulk: async (misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'misBulkRequestV2026' is not null or undefined
+            assertParamExists('disableMachineAccountsInBulk', 'misBulkRequestV2026', misBulkRequestV2026)
+            if (xSailPointExperimental === undefined) {
+                xSailPointExperimental = 'true';
+            }
+            
+            const localVarPath = `/machine-accounts/bulk-disable`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
+            if (xSailPointExperimental != null) {
+                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
+            }
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(misBulkRequestV2026, localVarRequestOptions, configuration)
 
             return {
                 url: toPathString(localVarUrlObj),
@@ -105979,26 +107772,21 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
             };
         },
         /**
-         * Delete a machine account subtype by source ID and technical name.
-         * @summary Delete subtype
-         * @param {string} sourceId The ID of the source.
-         * @param {string} technicalName The technical name of the subtype.
+         * Submits an asynchronous request to enable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:enable** right may still enable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk enable machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        deleteMachineAccountSubtypeByTechnicalName: async (sourceId: string, technicalName: string, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
-            // verify required parameter 'sourceId' is not null or undefined
-            assertParamExists('deleteMachineAccountSubtypeByTechnicalName', 'sourceId', sourceId)
-            // verify required parameter 'technicalName' is not null or undefined
-            assertParamExists('deleteMachineAccountSubtypeByTechnicalName', 'technicalName', technicalName)
+        enableMachineAccountsInBulk: async (misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'misBulkRequestV2026' is not null or undefined
+            assertParamExists('enableMachineAccountsInBulk', 'misBulkRequestV2026', misBulkRequestV2026)
             if (xSailPointExperimental === undefined) {
                 xSailPointExperimental = 'true';
             }
             
-            const localVarPath = `/sources/{sourceId}/subtypes/{technicalName}`
-                .replace(`{${"sourceId"}}`, encodeURIComponent(String(sourceId)))
-                .replace(`{${"technicalName"}}`, encodeURIComponent(String(technicalName)));
+            const localVarPath = `/machine-accounts/bulk-enable`;
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
             let baseOptions;
@@ -106006,7 +107794,7 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
                 baseOptions = configuration.baseOptions;
             }
 
-            const localVarRequestOptions = { method: 'DELETE', ...baseOptions, ...axiosOptions};
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
             const localVarHeaderParameter = {} as any;
             const localVarQueryParameter = {} as any;
 
@@ -106024,12 +107812,15 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
 
 
     
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
             if (xSailPointExperimental != null) {
                 localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
             }
             setSearchParams(localVarUrlObj, localVarQueryParameter);
             let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(misBulkRequestV2026, localVarRequestOptions, configuration)
 
             return {
                 url: toPathString(localVarUrlObj),
@@ -106522,6 +108313,62 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
                 axiosOptions: localVarRequestOptions,
             };
         },
+        /**
+         * Queues a reload for up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field.  Callers without the **idn:mis-account:reload** right may still reload accounts they own.
+         * @summary Bulk reload machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        reloadMachineAccountsInBulk: async (misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'misBulkRequestV2026' is not null or undefined
+            assertParamExists('reloadMachineAccountsInBulk', 'misBulkRequestV2026', misBulkRequestV2026)
+            if (xSailPointExperimental === undefined) {
+                xSailPointExperimental = 'true';
+            }
+            
+            const localVarPath = `/machine-accounts/bulk-reload`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
+            if (xSailPointExperimental != null) {
+                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
+            }
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(misBulkRequestV2026, localVarRequestOptions, configuration)
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
         /**
          * Use this API to update machine accounts details.  
          * @summary Update machine account details
@@ -106635,6 +108482,62 @@ export const MachineAccountsV2026ApiAxiosParamCreator = function (configuration?
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
             localVarRequestOptions.data = serializeDataIfNeeded(jsonPatchOperationV2026, localVarRequestOptions, configuration)
 
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Applies the same JSON Patch document to up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field (for example, 200 for success, 404 if the account was not found or is not accessible to the caller, 409 for a duplicate ID in the batch).  Callers without the **idn:mis-account:update** right may still update accounts they own. IDs the caller cannot operate on are reported as not found or failed in the per-row results.  Patchable fields include **description**, **subtype**, **environment**, **machineIdentity**, **ownerIdentity**, and **manuallyEdited** only.
+         * @summary Bulk update machine accounts
+         * @param {MisBulkUpdateRequestV2026} misBulkUpdateRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        updateMachineAccountsInBulk: async (misBulkUpdateRequestV2026: MisBulkUpdateRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'misBulkUpdateRequestV2026' is not null or undefined
+            assertParamExists('updateMachineAccountsInBulk', 'misBulkUpdateRequestV2026', misBulkUpdateRequestV2026)
+            if (xSailPointExperimental === undefined) {
+                xSailPointExperimental = 'true';
+            }
+            
+            const localVarPath = `/machine-accounts/bulk-update`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
+            if (xSailPointExperimental != null) {
+                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
+            }
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(misBulkUpdateRequestV2026, localVarRequestOptions, configuration)
+
             return {
                 url: toPathString(localVarUrlObj),
                 axiosOptions: localVarRequestOptions,
@@ -106680,6 +108583,34 @@ export const MachineAccountsV2026ApiFp = function(configuration?: Configuration)
             const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.deleteMachineAccountSubtypeByTechnicalName']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Submits an asynchronous request to disable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:disable** right may still disable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk disable machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async disableMachineAccountsInBulk(misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccountRequestAsyncResultV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.disableMachineAccountsInBulk(misBulkRequestV2026, xSailPointExperimental, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.disableMachineAccountsInBulk']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+        /**
+         * Submits an asynchronous request to enable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:enable** right may still enable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk enable machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async enableMachineAccountsInBulk(misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<AccountRequestAsyncResultV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.enableMachineAccountsInBulk(misBulkRequestV2026, xSailPointExperimental, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.enableMachineAccountsInBulk']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * Use this API to return the details for a single machine account by its ID.  
          * @summary Get machine account details
@@ -106804,6 +108735,20 @@ export const MachineAccountsV2026ApiFp = function(configuration?: Configuration)
             const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.patchMachineAccountSubtypeByTechnicalName']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Queues a reload for up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field.  Callers without the **idn:mis-account:reload** right may still reload accounts they own.
+         * @summary Bulk reload machine accounts
+         * @param {MisBulkRequestV2026} misBulkRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async reloadMachineAccountsInBulk(misBulkRequestV2026: MisBulkRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<MisBulkResponseV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.reloadMachineAccountsInBulk(misBulkRequestV2026, xSailPointExperimental, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.reloadMachineAccountsInBulk']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * Use this API to update machine accounts details.  
          * @summary Update machine account details
@@ -106834,6 +108779,20 @@ export const MachineAccountsV2026ApiFp = function(configuration?: Configuration)
             const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.updateMachineAccountSubtypeApprovalConfig']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Applies the same JSON Patch document to up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field (for example, 200 for success, 404 if the account was not found or is not accessible to the caller, 409 for a duplicate ID in the batch).  Callers without the **idn:mis-account:update** right may still update accounts they own. IDs the caller cannot operate on are reported as not found or failed in the per-row results.  Patchable fields include **description**, **subtype**, **environment**, **machineIdentity**, **ownerIdentity**, and **manuallyEdited** only.
+         * @summary Bulk update machine accounts
+         * @param {MisBulkUpdateRequestV2026} misBulkUpdateRequestV2026 
+         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async updateMachineAccountsInBulk(misBulkUpdateRequestV2026: MisBulkUpdateRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<MisBulkResponseV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.updateMachineAccountsInBulk(misBulkUpdateRequestV2026, xSailPointExperimental, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['MachineAccountsV2026Api.updateMachineAccountsInBulk']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
     }
 };
 
@@ -106864,6 +108823,26 @@ export const MachineAccountsV2026ApiFactory = function (configuration?: Configur
         deleteMachineAccountSubtypeByTechnicalName(requestParameters: MachineAccountsV2026ApiDeleteMachineAccountSubtypeByTechnicalNameRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<void> {
             return localVarFp.deleteMachineAccountSubtypeByTechnicalName(requestParameters.sourceId, requestParameters.technicalName, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Submits an asynchronous request to disable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:disable** right may still disable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk disable machine accounts
+         * @param {MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        disableMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<AccountRequestAsyncResultV2026> {
+            return localVarFp.disableMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        },
+        /**
+         * Submits an asynchronous request to enable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:enable** right may still enable accounts they own. Non-owned IDs are excluded from the task.
+         * @summary Bulk enable machine accounts
+         * @param {MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        enableMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<AccountRequestAsyncResultV2026> {
+            return localVarFp.enableMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * Use this API to return the details for a single machine account by its ID.  
          * @summary Get machine account details
@@ -106944,6 +108923,16 @@ export const MachineAccountsV2026ApiFactory = function (configuration?: Configur
         patchMachineAccountSubtypeByTechnicalName(requestParameters: MachineAccountsV2026ApiPatchMachineAccountSubtypeByTechnicalNameRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<SourceSubtypeV2026> {
             return localVarFp.patchMachineAccountSubtypeByTechnicalName(requestParameters.sourceId, requestParameters.technicalName, requestParameters.requestBody, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Queues a reload for up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field.  Callers without the **idn:mis-account:reload** right may still reload accounts they own.
+         * @summary Bulk reload machine accounts
+         * @param {MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        reloadMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<MisBulkResponseV2026>> {
+            return localVarFp.reloadMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * Use this API to update machine accounts details.  
          * @summary Update machine account details
@@ -106964,6 +108953,16 @@ export const MachineAccountsV2026ApiFactory = function (configuration?: Configur
         updateMachineAccountSubtypeApprovalConfig(requestParameters: MachineAccountsV2026ApiUpdateMachineAccountSubtypeApprovalConfigRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<MachineAccountSubtypeConfigDtoV2026> {
             return localVarFp.updateMachineAccountSubtypeApprovalConfig(requestParameters.xSailPointExperimental, requestParameters.subtypeId, requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Applies the same JSON Patch document to up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field (for example, 200 for success, 404 if the account was not found or is not accessible to the caller, 409 for a duplicate ID in the batch).  Callers without the **idn:mis-account:update** right may still update accounts they own. IDs the caller cannot operate on are reported as not found or failed in the per-row results.  Patchable fields include **description**, **subtype**, **environment**, **machineIdentity**, **ownerIdentity**, and **manuallyEdited** only.
+         * @summary Bulk update machine accounts
+         * @param {MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        updateMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<MisBulkResponseV2026>> {
+            return localVarFp.updateMachineAccountsInBulk(requestParameters.misBulkUpdateRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        },
     };
 };
 
@@ -107023,6 +109022,48 @@ export interface MachineAccountsV2026ApiDeleteMachineAccountSubtypeByTechnicalNa
     readonly xSailPointExperimental?: string
 }
 
+/**
+ * Request parameters for disableMachineAccountsInBulk operation in MachineAccountsV2026Api.
+ * @export
+ * @interface MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest
+ */
+export interface MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest {
+    /**
+     * 
+     * @type {MisBulkRequestV2026}
+     * @memberof MachineAccountsV2026ApiDisableMachineAccountsInBulk
+     */
+    readonly misBulkRequestV2026: MisBulkRequestV2026
+
+    /**
+     * Use this header to enable this experimental API.
+     * @type {string}
+     * @memberof MachineAccountsV2026ApiDisableMachineAccountsInBulk
+     */
+    readonly xSailPointExperimental?: string
+}
+
+/**
+ * Request parameters for enableMachineAccountsInBulk operation in MachineAccountsV2026Api.
+ * @export
+ * @interface MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest
+ */
+export interface MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest {
+    /**
+     * 
+     * @type {MisBulkRequestV2026}
+     * @memberof MachineAccountsV2026ApiEnableMachineAccountsInBulk
+     */
+    readonly misBulkRequestV2026: MisBulkRequestV2026
+
+    /**
+     * Use this header to enable this experimental API.
+     * @type {string}
+     * @memberof MachineAccountsV2026ApiEnableMachineAccountsInBulk
+     */
+    readonly xSailPointExperimental?: string
+}
+
 /**
  * Request parameters for getMachineAccount operation in MachineAccountsV2026Api.
  * @export
@@ -107275,6 +109316,27 @@ export interface MachineAccountsV2026ApiPatchMachineAccountSubtypeByTechnicalNam
     readonly xSailPointExperimental?: string
 }
 
+/**
+ * Request parameters for reloadMachineAccountsInBulk operation in MachineAccountsV2026Api.
+ * @export
+ * @interface MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest
+ */
+export interface MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest {
+    /**
+     * 
+     * @type {MisBulkRequestV2026}
+     * @memberof MachineAccountsV2026ApiReloadMachineAccountsInBulk
+     */
+    readonly misBulkRequestV2026: MisBulkRequestV2026
+
+    /**
+     * Use this header to enable this experimental API.
+     * @type {string}
+     * @memberof MachineAccountsV2026ApiReloadMachineAccountsInBulk
+     */
+    readonly xSailPointExperimental?: string
+}
+
 /**
  * Request parameters for updateMachineAccount operation in MachineAccountsV2026Api.
  * @export
@@ -107331,6 +109393,27 @@ export interface MachineAccountsV2026ApiUpdateMachineAccountSubtypeApprovalConfi
     readonly jsonPatchOperationV2026: Array<JsonPatchOperationV2026>
 }
 
+/**
+ * Request parameters for updateMachineAccountsInBulk operation in MachineAccountsV2026Api.
+ * @export
+ * @interface MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest
+ */
+export interface MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest {
+    /**
+     * 
+     * @type {MisBulkUpdateRequestV2026}
+     * @memberof MachineAccountsV2026ApiUpdateMachineAccountsInBulk
+     */
+    readonly misBulkUpdateRequestV2026: MisBulkUpdateRequestV2026
+
+    /**
+     * Use this header to enable this experimental API.
+     * @type {string}
+     * @memberof MachineAccountsV2026ApiUpdateMachineAccountsInBulk
+     */
+    readonly xSailPointExperimental?: string
+}
+
 /**
  * MachineAccountsV2026Api - object-oriented interface
  * @export
@@ -107362,6 +109445,30 @@ export class MachineAccountsV2026Api extends BaseAPI {
         return MachineAccountsV2026ApiFp(this.configuration).deleteMachineAccountSubtypeByTechnicalName(requestParameters.sourceId, requestParameters.technicalName, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
+    /**
+     * Submits an asynchronous request to disable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:disable** right may still disable accounts they own. Non-owned IDs are excluded from the task.
+     * @summary Bulk disable machine accounts
+     * @param {MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof MachineAccountsV2026Api
+     */
+    public disableMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiDisableMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return MachineAccountsV2026ApiFp(this.configuration).disableMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
+    /**
+     * Submits an asynchronous request to enable up to 100 machine accounts.  The response returns HTTP 202 Accepted with an **accountRequestId** task identifier. Use the account request APIs to track completion.  Callers without the **idn:mis-account:enable** right may still enable accounts they own. Non-owned IDs are excluded from the task.
+     * @summary Bulk enable machine accounts
+     * @param {MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof MachineAccountsV2026Api
+     */
+    public enableMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiEnableMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return MachineAccountsV2026ApiFp(this.configuration).enableMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * Use this API to return the details for a single machine account by its ID.  
      * @summary Get machine account details
@@ -107458,6 +109565,18 @@ export class MachineAccountsV2026Api extends BaseAPI {
         return MachineAccountsV2026ApiFp(this.configuration).patchMachineAccountSubtypeByTechnicalName(requestParameters.sourceId, requestParameters.technicalName, requestParameters.requestBody, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
+    /**
+     * Queues a reload for up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field.  Callers without the **idn:mis-account:reload** right may still reload accounts they own.
+     * @summary Bulk reload machine accounts
+     * @param {MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof MachineAccountsV2026Api
+     */
+    public reloadMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiReloadMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return MachineAccountsV2026ApiFp(this.configuration).reloadMachineAccountsInBulk(requestParameters.misBulkRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * Use this API to update machine accounts details.  
      * @summary Update machine account details
@@ -107481,6 +109600,18 @@ export class MachineAccountsV2026Api extends BaseAPI {
     public updateMachineAccountSubtypeApprovalConfig(requestParameters: MachineAccountsV2026ApiUpdateMachineAccountSubtypeApprovalConfigRequest, axiosOptions?: RawAxiosRequestConfig) {
         return MachineAccountsV2026ApiFp(this.configuration).updateMachineAccountSubtypeApprovalConfig(requestParameters.xSailPointExperimental, requestParameters.subtypeId, requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
+
+    /**
+     * Applies the same JSON Patch document to up to 100 machine accounts in one request.  The response uses HTTP 207 Multi-Status. Each array element reports the result for one requested ID in its **status** field (for example, 200 for success, 404 if the account was not found or is not accessible to the caller, 409 for a duplicate ID in the batch).  Callers without the **idn:mis-account:update** right may still update accounts they own. IDs the caller cannot operate on are reported as not found or failed in the per-row results.  Patchable fields include **description**, **subtype**, **environment**, **machineIdentity**, **ownerIdentity**, and **manuallyEdited** only.
+     * @summary Bulk update machine accounts
+     * @param {MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof MachineAccountsV2026Api
+     */
+    public updateMachineAccountsInBulk(requestParameters: MachineAccountsV2026ApiUpdateMachineAccountsInBulkRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return MachineAccountsV2026ApiFp(this.configuration).updateMachineAccountsInBulk(requestParameters.misBulkUpdateRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
 }
 
 
@@ -108134,19 +110265,23 @@ export const MachineIdentitiesV2026ApiAxiosParamCreator = function (configuratio
         /**
          * Starts a machine identity (AI Agents) aggregation on the specified source.
          * @summary Start machine identity aggregation
+         * @param {string} sourceId Source ID.
          * @param {MachineIdentityAggregationRequestV2026} machineIdentityAggregationRequestV2026 
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        startMachineIdentityAggregation: async (machineIdentityAggregationRequestV2026: MachineIdentityAggregationRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+        startMachineIdentityAggregation: async (sourceId: string, machineIdentityAggregationRequestV2026: MachineIdentityAggregationRequestV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'sourceId' is not null or undefined
+            assertParamExists('startMachineIdentityAggregation', 'sourceId', sourceId)
             // verify required parameter 'machineIdentityAggregationRequestV2026' is not null or undefined
             assertParamExists('startMachineIdentityAggregation', 'machineIdentityAggregationRequestV2026', machineIdentityAggregationRequestV2026)
             if (xSailPointExperimental === undefined) {
                 xSailPointExperimental = 'true';
             }
             
-            const localVarPath = `/sources/{sourceId}/aggregate-agents`;
+            const localVarPath = `/sources/{sourceId}/aggregate-agents`
+                .replace(`{${"sourceId"}}`, encodeURIComponent(String(sourceId)));
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
             let baseOptions;
@@ -108334,13 +110469,14 @@ export const MachineIdentitiesV2026ApiFp = function(configuration?: Configuratio
         /**
          * Starts a machine identity (AI Agents) aggregation on the specified source.
          * @summary Start machine identity aggregation
+         * @param {string} sourceId Source ID.
          * @param {MachineIdentityAggregationRequestV2026} machineIdentityAggregationRequestV2026 
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        async startMachineIdentityAggregation(machineIdentityAggregationRequestV2026: MachineIdentityAggregationRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<MachineIdentityAggregationResponseV2026>> {
-            const localVarAxiosArgs = await localVarAxiosParamCreator.startMachineIdentityAggregation(machineIdentityAggregationRequestV2026, xSailPointExperimental, axiosOptions);
+        async startMachineIdentityAggregation(sourceId: string, machineIdentityAggregationRequestV2026: MachineIdentityAggregationRequestV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<MachineIdentityAggregationResponseV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.startMachineIdentityAggregation(sourceId, machineIdentityAggregationRequestV2026, xSailPointExperimental, axiosOptions);
             const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
             const localVarOperationServerBasePath = operationServerMap['MachineIdentitiesV2026Api.startMachineIdentityAggregation']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
@@ -108428,7 +110564,7 @@ export const MachineIdentitiesV2026ApiFactory = function (configuration?: Config
          * @throws {RequiredError}
          */
         startMachineIdentityAggregation(requestParameters: MachineIdentitiesV2026ApiStartMachineIdentityAggregationRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<MachineIdentityAggregationResponseV2026> {
-            return localVarFp.startMachineIdentityAggregation(requestParameters.machineIdentityAggregationRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+            return localVarFp.startMachineIdentityAggregation(requestParameters.sourceId, requestParameters.machineIdentityAggregationRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
         },
         /**
          * Use this API to update machine identity details. 
@@ -108610,6 +110746,13 @@ export interface MachineIdentitiesV2026ApiListMachineIdentityUserEntitlementsReq
  * @interface MachineIdentitiesV2026ApiStartMachineIdentityAggregationRequest
  */
 export interface MachineIdentitiesV2026ApiStartMachineIdentityAggregationRequest {
+    /**
+     * Source ID.
+     * @type {string}
+     * @memberof MachineIdentitiesV2026ApiStartMachineIdentityAggregation
+     */
+    readonly sourceId: string
+
     /**
      * 
      * @type {MachineIdentityAggregationRequestV2026}
@@ -108729,7 +110872,7 @@ export class MachineIdentitiesV2026Api extends BaseAPI {
      * @memberof MachineIdentitiesV2026Api
      */
     public startMachineIdentityAggregation(requestParameters: MachineIdentitiesV2026ApiStartMachineIdentityAggregationRequest, axiosOptions?: RawAxiosRequestConfig) {
-        return MachineIdentitiesV2026ApiFp(this.configuration).startMachineIdentityAggregation(requestParameters.machineIdentityAggregationRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+        return MachineIdentitiesV2026ApiFp(this.configuration).startMachineIdentityAggregation(requestParameters.sourceId, requestParameters.machineIdentityAggregationRequestV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
     /**
@@ -122735,6 +124878,300 @@ export class PrivilegeCriteriaConfigurationV2026Api extends BaseAPI {
 
 
 
+/**
+ * PromptInsightsV2026Api - axios parameter creator
+ * @export
+ */
+export const PromptInsightsV2026ApiAxiosParamCreator = function (configuration?: Configuration) {
+    return {
+        /**
+         * Returns aggregate prompt insights metrics for the requested time window.
+         * @summary Get prompt insights metrics
+         * @param {GetPromptInsightsMetricsIntervalV2026} interval Relative lookback window for metrics aggregation.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getPromptInsightsMetrics: async (interval: GetPromptInsightsMetricsIntervalV2026, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'interval' is not null or undefined
+            assertParamExists('getPromptInsightsMetrics', 'interval', interval)
+            const localVarPath = `/prompt-insights/metrics`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (interval !== undefined) {
+                localVarQueryParameter['interval'] = interval;
+            }
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Returns a paginated list of prompt insights within a lookback window, with optional structured filters. Results are sorted by timestamp descending (most recent first).
+         * @summary List prompt insights
+         * @param {ListPromptInsightsIntervalV2026} interval Relative lookback window for prompt insights.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **policyDecision**: *eq*  **category**: *eq*  **severity**: *eq*  **user**: *eq, sw, co*  **agent**: *eq, sw, co*  **reason**: *eq, sw, co*  **rule**: *eq, sw, co*  **policy**: *eq, sw, co*
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPromptInsights: async (interval: ListPromptInsightsIntervalV2026, limit?: number, offset?: number, filters?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'interval' is not null or undefined
+            assertParamExists('listPromptInsights', 'interval', interval)
+            const localVarPath = `/prompt-insights`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (interval !== undefined) {
+                localVarQueryParameter['interval'] = interval;
+            }
+
+            if (limit !== undefined) {
+                localVarQueryParameter['limit'] = limit;
+            }
+
+            if (offset !== undefined) {
+                localVarQueryParameter['offset'] = offset;
+            }
+
+            if (filters !== undefined) {
+                localVarQueryParameter['filters'] = filters;
+            }
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+    }
+};
+
+/**
+ * PromptInsightsV2026Api - functional programming interface
+ * @export
+ */
+export const PromptInsightsV2026ApiFp = function(configuration?: Configuration) {
+    const localVarAxiosParamCreator = PromptInsightsV2026ApiAxiosParamCreator(configuration)
+    return {
+        /**
+         * Returns aggregate prompt insights metrics for the requested time window.
+         * @summary Get prompt insights metrics
+         * @param {GetPromptInsightsMetricsIntervalV2026} interval Relative lookback window for metrics aggregation.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async getPromptInsightsMetrics(interval: GetPromptInsightsMetricsIntervalV2026, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<PromptInsightsMetricsV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.getPromptInsightsMetrics(interval, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['PromptInsightsV2026Api.getPromptInsightsMetrics']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+        /**
+         * Returns a paginated list of prompt insights within a lookback window, with optional structured filters. Results are sorted by timestamp descending (most recent first).
+         * @summary List prompt insights
+         * @param {ListPromptInsightsIntervalV2026} interval Relative lookback window for prompt insights.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {string} [filters] Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **policyDecision**: *eq*  **category**: *eq*  **severity**: *eq*  **user**: *eq, sw, co*  **agent**: *eq, sw, co*  **reason**: *eq, sw, co*  **rule**: *eq, sw, co*  **policy**: *eq, sw, co*
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async listPromptInsights(interval: ListPromptInsightsIntervalV2026, limit?: number, offset?: number, filters?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<PromptInsightV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.listPromptInsights(interval, limit, offset, filters, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['PromptInsightsV2026Api.listPromptInsights']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+    }
+};
+
+/**
+ * PromptInsightsV2026Api - factory interface
+ * @export
+ */
+export const PromptInsightsV2026ApiFactory = function (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) {
+    const localVarFp = PromptInsightsV2026ApiFp(configuration)
+    return {
+        /**
+         * Returns aggregate prompt insights metrics for the requested time window.
+         * @summary Get prompt insights metrics
+         * @param {PromptInsightsV2026ApiGetPromptInsightsMetricsRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        getPromptInsightsMetrics(requestParameters: PromptInsightsV2026ApiGetPromptInsightsMetricsRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<PromptInsightsMetricsV2026> {
+            return localVarFp.getPromptInsightsMetrics(requestParameters.interval, axiosOptions).then((request) => request(axios, basePath));
+        },
+        /**
+         * Returns a paginated list of prompt insights within a lookback window, with optional structured filters. Results are sorted by timestamp descending (most recent first).
+         * @summary List prompt insights
+         * @param {PromptInsightsV2026ApiListPromptInsightsRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPromptInsights(requestParameters: PromptInsightsV2026ApiListPromptInsightsRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<PromptInsightV2026>> {
+            return localVarFp.listPromptInsights(requestParameters.interval, requestParameters.limit, requestParameters.offset, requestParameters.filters, axiosOptions).then((request) => request(axios, basePath));
+        },
+    };
+};
+
+/**
+ * Request parameters for getPromptInsightsMetrics operation in PromptInsightsV2026Api.
+ * @export
+ * @interface PromptInsightsV2026ApiGetPromptInsightsMetricsRequest
+ */
+export interface PromptInsightsV2026ApiGetPromptInsightsMetricsRequest {
+    /**
+     * Relative lookback window for metrics aggregation.
+     * @type {'-1h' | '-1d' | '-7d' | '-30d'}
+     * @memberof PromptInsightsV2026ApiGetPromptInsightsMetrics
+     */
+    readonly interval: GetPromptInsightsMetricsIntervalV2026
+}
+
+/**
+ * Request parameters for listPromptInsights operation in PromptInsightsV2026Api.
+ * @export
+ * @interface PromptInsightsV2026ApiListPromptInsightsRequest
+ */
+export interface PromptInsightsV2026ApiListPromptInsightsRequest {
+    /**
+     * Relative lookback window for prompt insights.
+     * @type {'-1h' | '-1d' | '-7d' | '-30d'}
+     * @memberof PromptInsightsV2026ApiListPromptInsights
+     */
+    readonly interval: ListPromptInsightsIntervalV2026
+
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof PromptInsightsV2026ApiListPromptInsights
+     */
+    readonly limit?: number
+
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof PromptInsightsV2026ApiListPromptInsights
+     */
+    readonly offset?: number
+
+    /**
+     * Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results)  Filtering is supported for the following fields and operators:  **policyDecision**: *eq*  **category**: *eq*  **severity**: *eq*  **user**: *eq, sw, co*  **agent**: *eq, sw, co*  **reason**: *eq, sw, co*  **rule**: *eq, sw, co*  **policy**: *eq, sw, co*
+     * @type {string}
+     * @memberof PromptInsightsV2026ApiListPromptInsights
+     */
+    readonly filters?: string
+}
+
+/**
+ * PromptInsightsV2026Api - object-oriented interface
+ * @export
+ * @class PromptInsightsV2026Api
+ * @extends {BaseAPI}
+ */
+export class PromptInsightsV2026Api extends BaseAPI {
+    /**
+     * Returns aggregate prompt insights metrics for the requested time window.
+     * @summary Get prompt insights metrics
+     * @param {PromptInsightsV2026ApiGetPromptInsightsMetricsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PromptInsightsV2026Api
+     */
+    public getPromptInsightsMetrics(requestParameters: PromptInsightsV2026ApiGetPromptInsightsMetricsRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return PromptInsightsV2026ApiFp(this.configuration).getPromptInsightsMetrics(requestParameters.interval, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
+    /**
+     * Returns a paginated list of prompt insights within a lookback window, with optional structured filters. Results are sorted by timestamp descending (most recent first).
+     * @summary List prompt insights
+     * @param {PromptInsightsV2026ApiListPromptInsightsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof PromptInsightsV2026Api
+     */
+    public listPromptInsights(requestParameters: PromptInsightsV2026ApiListPromptInsightsRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return PromptInsightsV2026ApiFp(this.configuration).listPromptInsights(requestParameters.interval, requestParameters.limit, requestParameters.offset, requestParameters.filters, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+}
+
+/**
+ * @export
+ */
+export const GetPromptInsightsMetricsIntervalV2026 = {
+    _1h: '-1h',
+    _1d: '-1d',
+    _7d: '-7d',
+    _30d: '-30d'
+} as const;
+export type GetPromptInsightsMetricsIntervalV2026 = typeof GetPromptInsightsMetricsIntervalV2026[keyof typeof GetPromptInsightsMetricsIntervalV2026];
+/**
+ * @export
+ */
+export const ListPromptInsightsIntervalV2026 = {
+    _1h: '-1h',
+    _1d: '-1d',
+    _7d: '-7d',
+    _30d: '-30d'
+} as const;
+export type ListPromptInsightsIntervalV2026 = typeof ListPromptInsightsIntervalV2026[keyof typeof ListPromptInsightsIntervalV2026];
+
+
 /**
  * PublicIdentitiesV2026Api - axios parameter creator
  * @export
@@ -137295,16 +139732,20 @@ export const SourcesV2026ApiAxiosParamCreator = function (configuration?: Config
         /**
          * This API gets the current entitlement request configuration for a source. This source-level configuration should apply for all the entitlements in the source.  Access request to any entitlements in the source should follow this configuration unless a separate entitlement-level configuration is defined. - During access request, this source-level entitlement request configuration overrides the global organization-level configuration. - However, the entitlement-level configuration (if defined) overrides this source-level configuration.
          * @summary Get source entitlement request configuration
+         * @param {string} id The Source id
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        getSourceEntitlementRequestConfig: async (xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+        getSourceEntitlementRequestConfig: async (id: string, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'id' is not null or undefined
+            assertParamExists('getSourceEntitlementRequestConfig', 'id', id)
             if (xSailPointExperimental === undefined) {
                 xSailPointExperimental = 'true';
             }
             
-            const localVarPath = `/sources/{id}/entitlement-request-config`;
+            const localVarPath = `/sources/{id}/entitlement-request-config`
+                .replace(`{${"id"}}`, encodeURIComponent(String(id)));
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
             let baseOptions;
@@ -138967,19 +141408,23 @@ export const SourcesV2026ApiAxiosParamCreator = function (configuration?: Config
         /**
          * This API replaces the current entitlement request configuration for a source. This source-level configuration should apply for all the entitlements in the source.  Access request to any entitlements in the source should follow this configuration unless a separate entitlement-level configuration is defined. - During access request, this source-level entitlement request configuration overrides the global organization-level configuration. - However, the entitlement-level configuration (if defined) overrides this source-level configuration.
          * @summary Update source entitlement request configuration
+         * @param {string} id The Source id
          * @param {SourceEntitlementRequestConfigV2026} sourceEntitlementRequestConfigV2026 
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        updateSourceEntitlementRequestConfig: async (sourceEntitlementRequestConfigV2026: SourceEntitlementRequestConfigV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+        updateSourceEntitlementRequestConfig: async (id: string, sourceEntitlementRequestConfigV2026: SourceEntitlementRequestConfigV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'id' is not null or undefined
+            assertParamExists('updateSourceEntitlementRequestConfig', 'id', id)
             // verify required parameter 'sourceEntitlementRequestConfigV2026' is not null or undefined
             assertParamExists('updateSourceEntitlementRequestConfig', 'sourceEntitlementRequestConfigV2026', sourceEntitlementRequestConfigV2026)
             if (xSailPointExperimental === undefined) {
                 xSailPointExperimental = 'true';
             }
             
-            const localVarPath = `/sources/{id}/entitlement-request-config`;
+            const localVarPath = `/sources/{id}/entitlement-request-config`
+                .replace(`{${"id"}}`, encodeURIComponent(String(id)));
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
             let baseOptions;
@@ -139425,12 +141870,13 @@ export const SourcesV2026ApiFp = function(configuration?: Configuration) {
         /**
          * This API gets the current entitlement request configuration for a source. This source-level configuration should apply for all the entitlements in the source.  Access request to any entitlements in the source should follow this configuration unless a separate entitlement-level configuration is defined. - During access request, this source-level entitlement request configuration overrides the global organization-level configuration. - However, the entitlement-level configuration (if defined) overrides this source-level configuration.
          * @summary Get source entitlement request configuration
+         * @param {string} id The Source id
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        async getSourceEntitlementRequestConfig(xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<SourceEntitlementRequestConfigV2026>> {
-            const localVarAxiosArgs = await localVarAxiosParamCreator.getSourceEntitlementRequestConfig(xSailPointExperimental, axiosOptions);
+        async getSourceEntitlementRequestConfig(id: string, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<SourceEntitlementRequestConfigV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.getSourceEntitlementRequestConfig(id, xSailPointExperimental, axiosOptions);
             const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
             const localVarOperationServerBasePath = operationServerMap['SourcesV2026Api.getSourceEntitlementRequestConfig']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
@@ -139882,13 +142328,14 @@ export const SourcesV2026ApiFp = function(configuration?: Configuration) {
         /**
          * This API replaces the current entitlement request configuration for a source. This source-level configuration should apply for all the entitlements in the source.  Access request to any entitlements in the source should follow this configuration unless a separate entitlement-level configuration is defined. - During access request, this source-level entitlement request configuration overrides the global organization-level configuration. - However, the entitlement-level configuration (if defined) overrides this source-level configuration.
          * @summary Update source entitlement request configuration
+         * @param {string} id The Source id
          * @param {SourceEntitlementRequestConfigV2026} sourceEntitlementRequestConfigV2026 
          * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        async updateSourceEntitlementRequestConfig(sourceEntitlementRequestConfigV2026: SourceEntitlementRequestConfigV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<SourceEntitlementRequestConfigV2026>> {
-            const localVarAxiosArgs = await localVarAxiosParamCreator.updateSourceEntitlementRequestConfig(sourceEntitlementRequestConfigV2026, xSailPointExperimental, axiosOptions);
+        async updateSourceEntitlementRequestConfig(id: string, sourceEntitlementRequestConfigV2026: SourceEntitlementRequestConfigV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<SourceEntitlementRequestConfigV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.updateSourceEntitlementRequestConfig(id, sourceEntitlementRequestConfigV2026, xSailPointExperimental, axiosOptions);
             const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
             const localVarOperationServerBasePath = operationServerMap['SourcesV2026Api.updateSourceEntitlementRequestConfig']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
@@ -140150,8 +142597,8 @@ export const SourcesV2026ApiFactory = function (configuration?: Configuration, b
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        getSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiGetSourceEntitlementRequestConfigRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<SourceEntitlementRequestConfigV2026> {
-            return localVarFp.getSourceEntitlementRequestConfig(requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        getSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiGetSourceEntitlementRequestConfigRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<SourceEntitlementRequestConfigV2026> {
+            return localVarFp.getSourceEntitlementRequestConfig(requestParameters.id, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
         },
         /**
          * This endpoint fetches source health by source\'s id
@@ -140471,7 +142918,7 @@ export const SourcesV2026ApiFactory = function (configuration?: Configuration, b
          * @throws {RequiredError}
          */
         updateSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiUpdateSourceEntitlementRequestConfigRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<SourceEntitlementRequestConfigV2026> {
-            return localVarFp.updateSourceEntitlementRequestConfig(requestParameters.sourceEntitlementRequestConfigV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+            return localVarFp.updateSourceEntitlementRequestConfig(requestParameters.id, requestParameters.sourceEntitlementRequestConfigV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
         },
         /**
          * Use this API to selectively update an existing Schedule using a JSONPatch payload.   The following schedule fields are immutable and cannot be updated:  - type 
@@ -140873,6 +143320,13 @@ export interface SourcesV2026ApiGetSourceConnectionsRequest {
  * @interface SourcesV2026ApiGetSourceEntitlementRequestConfigRequest
  */
 export interface SourcesV2026ApiGetSourceEntitlementRequestConfigRequest {
+    /**
+     * The Source id
+     * @type {string}
+     * @memberof SourcesV2026ApiGetSourceEntitlementRequestConfig
+     */
+    readonly id: string
+
     /**
      * Use this header to enable this experimental API.
      * @type {string}
@@ -141608,6 +144062,13 @@ export interface SourcesV2026ApiUpdateSourceRequest {
  * @interface SourcesV2026ApiUpdateSourceEntitlementRequestConfigRequest
  */
 export interface SourcesV2026ApiUpdateSourceEntitlementRequestConfigRequest {
+    /**
+     * The Source id
+     * @type {string}
+     * @memberof SourcesV2026ApiUpdateSourceEntitlementRequestConfig
+     */
+    readonly id: string
+
     /**
      * 
      * @type {SourceEntitlementRequestConfigV2026}
@@ -141946,8 +144407,8 @@ export class SourcesV2026Api extends BaseAPI {
      * @throws {RequiredError}
      * @memberof SourcesV2026Api
      */
-    public getSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiGetSourceEntitlementRequestConfigRequest = {}, axiosOptions?: RawAxiosRequestConfig) {
-        return SourcesV2026ApiFp(this.configuration).getSourceEntitlementRequestConfig(requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    public getSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiGetSourceEntitlementRequestConfigRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return SourcesV2026ApiFp(this.configuration).getSourceEntitlementRequestConfig(requestParameters.id, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
     /**
@@ -142331,7 +144792,7 @@ export class SourcesV2026Api extends BaseAPI {
      * @memberof SourcesV2026Api
      */
     public updateSourceEntitlementRequestConfig(requestParameters: SourcesV2026ApiUpdateSourceEntitlementRequestConfigRequest, axiosOptions?: RawAxiosRequestConfig) {
-        return SourcesV2026ApiFp(this.configuration).updateSourceEntitlementRequestConfig(requestParameters.sourceEntitlementRequestConfigV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+        return SourcesV2026ApiFp(this.configuration).updateSourceEntitlementRequestConfig(requestParameters.id, requestParameters.sourceEntitlementRequestConfigV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
     /**
@@ -142424,6 +144885,54 @@ export type UpdateSourceScheduleScheduleTypeV2026 = typeof UpdateSourceScheduleS
  */
 export const SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator = function (configuration?: Configuration) {
     return {
+        /**
+         * Approve multiple entitlement recommendations in a single request. Each item in the request must include the recommendation ID and, depending on the record type, either an approved description (SED items) or an approved privilege level (privilege items). Returns a per-item result indicating success or failure.
+         * @summary Bulk approve entitlement recommendations
+         * @param {BulkApproveEntitlementRecommendationRequestV2026} bulkApproveEntitlementRecommendationRequestV2026 The list of recommendation items to approve.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        approveBulkEntitlementRecommendations: async (bulkApproveEntitlementRecommendationRequestV2026: BulkApproveEntitlementRecommendationRequestV2026, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'bulkApproveEntitlementRecommendationRequestV2026' is not null or undefined
+            assertParamExists('approveBulkEntitlementRecommendations', 'bulkApproveEntitlementRecommendationRequestV2026', bulkApproveEntitlementRecommendationRequestV2026)
+            const localVarPath = `/entitlement-recommendations/bulk-approve`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(bulkApproveEntitlementRecommendationRequestV2026, localVarRequestOptions, configuration)
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
         /**
          * Create the initial auto-write settings for a tenant. Returns 409 Conflict if settings already exist. Use PATCH to update existing settings.
          * @summary Create auto-write settings for SED
@@ -142618,6 +145127,110 @@ export const SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator = function
 
 
     
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Returns a list of entitlement recommendations (SED and/or privilege) that are currently awaiting review or approval. Each record includes the recommendation type, entitlement details, and any AI-generated suggestions.
+         * @summary List pending entitlement recommendation approvals
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPendingEntitlementRecommendationApprovals: async (offset?: number, limit?: number, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            const localVarPath = `/entitlement-recommendations/pending-approvals`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (offset !== undefined) {
+                localVarQueryParameter['offset'] = offset;
+            }
+
+            if (limit !== undefined) {
+                localVarQueryParameter['limit'] = limit;
+            }
+
+
+    
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
+        /**
+         * Returns a list of privileged entitlement recommendation groups. Each group aggregates individual entitlement instances that share the same entitlement name and connector type, along with a recommendation score and instance count.
+         * @summary List privileged entitlement recommendations
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPrivilegedEntitlementRecommendations: async (offset?: number, limit?: number, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            const localVarPath = `/privileged-recommendations`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'GET', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+            if (offset !== undefined) {
+                localVarQueryParameter['offset'] = offset;
+            }
+
+            if (limit !== undefined) {
+                localVarQueryParameter['limit'] = limit;
+            }
+
+
+    
             setSearchParams(localVarUrlObj, localVarQueryParameter);
             let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
@@ -142709,6 +145322,58 @@ export const SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator = function
                 axiosOptions: localVarRequestOptions,
             };
         },
+        /**
+         * Partially update a single entitlement recommendation record by its ID. Use this endpoint to update the status, description, or privilege level of a specific SED or privilege recommendation.
+         * @summary Update an entitlement recommendation
+         * @param {string} id The unique identifier of the entitlement recommendation to update.
+         * @param {Array<JsonPatchOperationV2026>} jsonPatchOperationV2026 The patch operations to apply to the entitlement recommendation record.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        patchEntitlementRecommendation: async (id: string, jsonPatchOperationV2026: Array<JsonPatchOperationV2026>, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'id' is not null or undefined
+            assertParamExists('patchEntitlementRecommendation', 'id', id)
+            // verify required parameter 'jsonPatchOperationV2026' is not null or undefined
+            assertParamExists('patchEntitlementRecommendation', 'jsonPatchOperationV2026', jsonPatchOperationV2026)
+            const localVarPath = `/entitlement-recommendations/{id}`
+                .replace(`{${"id"}}`, encodeURIComponent(String(id)));
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'PATCH', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json-patch+json';
+
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(jsonPatchOperationV2026, localVarRequestOptions, configuration)
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
         /**
          * Patch Suggested Entitlement Description
          * @summary Patch suggested entitlement description
@@ -142761,6 +145426,54 @@ export const SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator = function
                 axiosOptions: localVarRequestOptions,
             };
         },
+        /**
+         * Assign a set of entitlement recommendation records to a reviewer. The assignee can be a specific identity, a governance group, or a role-based assignee such as source owner or entitlement owner. Returns a batch ID that can be used to track the assignment.
+         * @summary Assign entitlement recommendations for review
+         * @param {EntitlementRecommendationAssignRequestV2026} entitlementRecommendationAssignRequestV2026 The recommendation IDs and the target assignee.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        submitEntitlementRecommendationsAssignment: async (entitlementRecommendationAssignRequestV2026: EntitlementRecommendationAssignRequestV2026, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+            // verify required parameter 'entitlementRecommendationAssignRequestV2026' is not null or undefined
+            assertParamExists('submitEntitlementRecommendationsAssignment', 'entitlementRecommendationAssignRequestV2026', entitlementRecommendationAssignRequestV2026)
+            const localVarPath = `/entitlement-recommendations/assign`;
+            // use dummy base URL string because the URL constructor only accepts absolute URLs.
+            const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
+            let baseOptions;
+            if (configuration) {
+                baseOptions = configuration.baseOptions;
+            }
+
+            const localVarRequestOptions = { method: 'POST', ...baseOptions, ...axiosOptions};
+            const localVarHeaderParameter = {} as any;
+            const localVarQueryParameter = {} as any;
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication userAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "userAuth", [], configuration)
+
+            // authentication applicationAuth required
+            // oauth required
+            await setOAuthToObject(localVarHeaderParameter, "applicationAuth", [], configuration)
+
+
+    
+            localVarHeaderParameter['Content-Type'] = 'application/json';
+
+            setSearchParams(localVarUrlObj, localVarQueryParameter);
+            let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
+            localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
+            localVarRequestOptions.data = serializeDataIfNeeded(entitlementRecommendationAssignRequestV2026, localVarRequestOptions, configuration)
+
+            return {
+                url: toPathString(localVarUrlObj),
+                axiosOptions: localVarRequestOptions,
+            };
+        },
         /**
          * Submit Bulk Approval Request for SED. Request body takes list of SED Ids. API responses with list of SED Approval Status
          * @summary Submit bulk approval request
@@ -142961,6 +145674,19 @@ export const SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator = function
 export const SuggestedEntitlementDescriptionV2026ApiFp = function(configuration?: Configuration) {
     const localVarAxiosParamCreator = SuggestedEntitlementDescriptionV2026ApiAxiosParamCreator(configuration)
     return {
+        /**
+         * Approve multiple entitlement recommendations in a single request. Each item in the request must include the recommendation ID and, depending on the record type, either an approved description (SED items) or an approved privilege level (privilege items). Returns a per-item result indicating success or failure.
+         * @summary Bulk approve entitlement recommendations
+         * @param {BulkApproveEntitlementRecommendationRequestV2026} bulkApproveEntitlementRecommendationRequestV2026 The list of recommendation items to approve.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async approveBulkEntitlementRecommendations(bulkApproveEntitlementRecommendationRequestV2026: BulkApproveEntitlementRecommendationRequestV2026, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<BulkApproveEntitlementRecommendationResultV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.approveBulkEntitlementRecommendations(bulkApproveEntitlementRecommendationRequestV2026, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.approveBulkEntitlementRecommendations']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * Create the initial auto-write settings for a tenant. Returns 409 Conflict if settings already exist. Use PATCH to update existing settings.
          * @summary Create auto-write settings for SED
@@ -143016,6 +145742,34 @@ export const SuggestedEntitlementDescriptionV2026ApiFp = function(configuration?
             const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.getSedBatches']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Returns a list of entitlement recommendations (SED and/or privilege) that are currently awaiting review or approval. Each record includes the recommendation type, entitlement details, and any AI-generated suggestions.
+         * @summary List pending entitlement recommendation approvals
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async listPendingEntitlementRecommendationApprovals(offset?: number, limit?: number, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<EntitlementRecommendationRecordV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.listPendingEntitlementRecommendationApprovals(offset, limit, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.listPendingEntitlementRecommendationApprovals']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
+        /**
+         * Returns a list of privileged entitlement recommendation groups. Each group aggregates individual entitlement instances that share the same entitlement name and connector type, along with a recommendation score and instance count.
+         * @summary List privileged entitlement recommendations
+         * @param {number} [offset] Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {number} [limit] Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async listPrivilegedEntitlementRecommendations(offset?: number, limit?: number, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<PrivilegedRecommendationGroupV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.listPrivilegedEntitlementRecommendations(offset, limit, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.listPrivilegedEntitlementRecommendations']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * List of Suggested Entitlement Descriptions (SED)  SED field descriptions:  **batchId**: the ID of the batch of entitlements that are submitted for description generation  **displayName**: the display name of the entitlement that we are generating a description for  **sourceName**: the name of the source associated with the entitlement that we are generating the description for  **sourceId**: the ID of the source associated with the entitlement that we are generating the description for  **status**: the status of the suggested entitlement description, valid status options: \"requested\", \"suggested\", \"not_suggested\", \"failed\", \"assigned\", \"approved\", \"denied\"  **fullText**: will filter suggested entitlement description records by text found in any of the following fields: entitlement name, entitlement display name, suggested description, source name
          * @summary List suggested entitlement descriptions
@@ -143036,6 +145790,20 @@ export const SuggestedEntitlementDescriptionV2026ApiFp = function(configuration?
             const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.listSeds']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Partially update a single entitlement recommendation record by its ID. Use this endpoint to update the status, description, or privilege level of a specific SED or privilege recommendation.
+         * @summary Update an entitlement recommendation
+         * @param {string} id The unique identifier of the entitlement recommendation to update.
+         * @param {Array<JsonPatchOperationV2026>} jsonPatchOperationV2026 The patch operations to apply to the entitlement recommendation record.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async patchEntitlementRecommendation(id: string, jsonPatchOperationV2026: Array<JsonPatchOperationV2026>, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<EntitlementRecommendationRecordV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.patchEntitlementRecommendation(id, jsonPatchOperationV2026, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.patchEntitlementRecommendation']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * Patch Suggested Entitlement Description
          * @summary Patch suggested entitlement description
@@ -143050,6 +145818,19 @@ export const SuggestedEntitlementDescriptionV2026ApiFp = function(configuration?
             const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.patchSed']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
         },
+        /**
+         * Assign a set of entitlement recommendation records to a reviewer. The assignee can be a specific identity, a governance group, or a role-based assignee such as source owner or entitlement owner. Returns a batch ID that can be used to track the assignment.
+         * @summary Assign entitlement recommendations for review
+         * @param {EntitlementRecommendationAssignRequestV2026} entitlementRecommendationAssignRequestV2026 The recommendation IDs and the target assignee.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        async submitEntitlementRecommendationsAssignment(entitlementRecommendationAssignRequestV2026: EntitlementRecommendationAssignRequestV2026, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<EntitlementRecommendationAssignResultV2026>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.submitEntitlementRecommendationsAssignment(entitlementRecommendationAssignRequestV2026, axiosOptions);
+            const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
+            const localVarOperationServerBasePath = operationServerMap['SuggestedEntitlementDescriptionV2026Api.submitEntitlementRecommendationsAssignment']?.[localVarOperationServerIndex]?.url;
+            return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
+        },
         /**
          * Submit Bulk Approval Request for SED. Request body takes list of SED Ids. API responses with list of SED Approval Status
          * @summary Submit bulk approval request
@@ -143112,6 +145893,16 @@ export const SuggestedEntitlementDescriptionV2026ApiFp = function(configuration?
 export const SuggestedEntitlementDescriptionV2026ApiFactory = function (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) {
     const localVarFp = SuggestedEntitlementDescriptionV2026ApiFp(configuration)
     return {
+        /**
+         * Approve multiple entitlement recommendations in a single request. Each item in the request must include the recommendation ID and, depending on the record type, either an approved description (SED items) or an approved privilege level (privilege items). Returns a per-item result indicating success or failure.
+         * @summary Bulk approve entitlement recommendations
+         * @param {SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        approveBulkEntitlementRecommendations(requestParameters: SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<BulkApproveEntitlementRecommendationResultV2026>> {
+            return localVarFp.approveBulkEntitlementRecommendations(requestParameters.bulkApproveEntitlementRecommendationRequestV2026, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * Create the initial auto-write settings for a tenant. Returns 409 Conflict if settings already exist. Use PATCH to update existing settings.
          * @summary Create auto-write settings for SED
@@ -143151,6 +145942,26 @@ export const SuggestedEntitlementDescriptionV2026ApiFactory = function (configur
         getSedBatches(requestParameters: SuggestedEntitlementDescriptionV2026ApiGetSedBatchesRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<SedBatchRecordV2026>> {
             return localVarFp.getSedBatches(requestParameters.offset, requestParameters.limit, requestParameters.count, requestParameters.countOnly, requestParameters.status, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Returns a list of entitlement recommendations (SED and/or privilege) that are currently awaiting review or approval. Each record includes the recommendation type, entitlement details, and any AI-generated suggestions.
+         * @summary List pending entitlement recommendation approvals
+         * @param {SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPendingEntitlementRecommendationApprovals(requestParameters: SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<EntitlementRecommendationRecordV2026>> {
+            return localVarFp.listPendingEntitlementRecommendationApprovals(requestParameters.offset, requestParameters.limit, axiosOptions).then((request) => request(axios, basePath));
+        },
+        /**
+         * Returns a list of privileged entitlement recommendation groups. Each group aggregates individual entitlement instances that share the same entitlement name and connector type, along with a recommendation score and instance count.
+         * @summary List privileged entitlement recommendations
+         * @param {SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        listPrivilegedEntitlementRecommendations(requestParameters: SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<PrivilegedRecommendationGroupV2026>> {
+            return localVarFp.listPrivilegedEntitlementRecommendations(requestParameters.offset, requestParameters.limit, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * List of Suggested Entitlement Descriptions (SED)  SED field descriptions:  **batchId**: the ID of the batch of entitlements that are submitted for description generation  **displayName**: the display name of the entitlement that we are generating a description for  **sourceName**: the name of the source associated with the entitlement that we are generating the description for  **sourceId**: the ID of the source associated with the entitlement that we are generating the description for  **status**: the status of the suggested entitlement description, valid status options: \"requested\", \"suggested\", \"not_suggested\", \"failed\", \"assigned\", \"approved\", \"denied\"  **fullText**: will filter suggested entitlement description records by text found in any of the following fields: entitlement name, entitlement display name, suggested description, source name
          * @summary List suggested entitlement descriptions
@@ -143161,6 +145972,16 @@ export const SuggestedEntitlementDescriptionV2026ApiFactory = function (configur
         listSeds(requestParameters: SuggestedEntitlementDescriptionV2026ApiListSedsRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<SedV2026>> {
             return localVarFp.listSeds(requestParameters.limit, requestParameters.offset, requestParameters.count, requestParameters.filters, requestParameters.sorters, requestParameters.countOnly, requestParameters.requestedByAnyone, requestParameters.showPendingStatusOnly, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Partially update a single entitlement recommendation record by its ID. Use this endpoint to update the status, description, or privilege level of a specific SED or privilege recommendation.
+         * @summary Update an entitlement recommendation
+         * @param {SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        patchEntitlementRecommendation(requestParameters: SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<EntitlementRecommendationRecordV2026> {
+            return localVarFp.patchEntitlementRecommendation(requestParameters.id, requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * Patch Suggested Entitlement Description
          * @summary Patch suggested entitlement description
@@ -143171,6 +145992,16 @@ export const SuggestedEntitlementDescriptionV2026ApiFactory = function (configur
         patchSed(requestParameters: SuggestedEntitlementDescriptionV2026ApiPatchSedRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<SedV2026> {
             return localVarFp.patchSed(requestParameters.id, requestParameters.sedPatchV2026, axiosOptions).then((request) => request(axios, basePath));
         },
+        /**
+         * Assign a set of entitlement recommendation records to a reviewer. The assignee can be a specific identity, a governance group, or a role-based assignee such as source owner or entitlement owner. Returns a batch ID that can be used to track the assignment.
+         * @summary Assign entitlement recommendations for review
+         * @param {SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest} requestParameters Request parameters.
+         * @param {*} [axiosOptions] Override http request option.
+         * @throws {RequiredError}
+         */
+        submitEntitlementRecommendationsAssignment(requestParameters: SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<EntitlementRecommendationAssignResultV2026> {
+            return localVarFp.submitEntitlementRecommendationsAssignment(requestParameters.entitlementRecommendationAssignRequestV2026, axiosOptions).then((request) => request(axios, basePath));
+        },
         /**
          * Submit Bulk Approval Request for SED. Request body takes list of SED Ids. API responses with list of SED Approval Status
          * @summary Submit bulk approval request
@@ -143214,6 +146045,20 @@ export const SuggestedEntitlementDescriptionV2026ApiFactory = function (configur
     };
 };
 
+/**
+ * Request parameters for approveBulkEntitlementRecommendations operation in SuggestedEntitlementDescriptionV2026Api.
+ * @export
+ * @interface SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest
+ */
+export interface SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest {
+    /**
+     * The list of recommendation items to approve.
+     * @type {BulkApproveEntitlementRecommendationRequestV2026}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendations
+     */
+    readonly bulkApproveEntitlementRecommendationRequestV2026: BulkApproveEntitlementRecommendationRequestV2026
+}
+
 /**
  * Request parameters for createAutoWriteSettings operation in SuggestedEntitlementDescriptionV2026Api.
  * @export
@@ -143284,6 +146129,48 @@ export interface SuggestedEntitlementDescriptionV2026ApiGetSedBatchesRequest {
     readonly status?: string
 }
 
+/**
+ * Request parameters for listPendingEntitlementRecommendationApprovals operation in SuggestedEntitlementDescriptionV2026Api.
+ * @export
+ * @interface SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest
+ */
+export interface SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest {
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovals
+     */
+    readonly offset?: number
+
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovals
+     */
+    readonly limit?: number
+}
+
+/**
+ * Request parameters for listPrivilegedEntitlementRecommendations operation in SuggestedEntitlementDescriptionV2026Api.
+ * @export
+ * @interface SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest
+ */
+export interface SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest {
+    /**
+     * Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendations
+     */
+    readonly offset?: number
+
+    /**
+     * Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
+     * @type {number}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendations
+     */
+    readonly limit?: number
+}
+
 /**
  * Request parameters for listSeds operation in SuggestedEntitlementDescriptionV2026Api.
  * @export
@@ -143347,6 +146234,27 @@ export interface SuggestedEntitlementDescriptionV2026ApiListSedsRequest {
     readonly showPendingStatusOnly?: boolean
 }
 
+/**
+ * Request parameters for patchEntitlementRecommendation operation in SuggestedEntitlementDescriptionV2026Api.
+ * @export
+ * @interface SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest
+ */
+export interface SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest {
+    /**
+     * The unique identifier of the entitlement recommendation to update.
+     * @type {string}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendation
+     */
+    readonly id: string
+
+    /**
+     * The patch operations to apply to the entitlement recommendation record.
+     * @type {Array<JsonPatchOperationV2026>}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendation
+     */
+    readonly jsonPatchOperationV2026: Array<JsonPatchOperationV2026>
+}
+
 /**
  * Request parameters for patchSed operation in SuggestedEntitlementDescriptionV2026Api.
  * @export
@@ -143368,6 +146276,20 @@ export interface SuggestedEntitlementDescriptionV2026ApiPatchSedRequest {
     readonly sedPatchV2026: Array<SedPatchV2026>
 }
 
+/**
+ * Request parameters for submitEntitlementRecommendationsAssignment operation in SuggestedEntitlementDescriptionV2026Api.
+ * @export
+ * @interface SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest
+ */
+export interface SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest {
+    /**
+     * The recommendation IDs and the target assignee.
+     * @type {EntitlementRecommendationAssignRequestV2026}
+     * @memberof SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignment
+     */
+    readonly entitlementRecommendationAssignRequestV2026: EntitlementRecommendationAssignRequestV2026
+}
+
 /**
  * Request parameters for submitSedApproval operation in SuggestedEntitlementDescriptionV2026Api.
  * @export
@@ -143431,6 +146353,18 @@ export interface SuggestedEntitlementDescriptionV2026ApiUpdateAutoWriteSettingsR
  * @extends {BaseAPI}
  */
 export class SuggestedEntitlementDescriptionV2026Api extends BaseAPI {
+    /**
+     * Approve multiple entitlement recommendations in a single request. Each item in the request must include the recommendation ID and, depending on the record type, either an approved description (SED items) or an approved privilege level (privilege items). Returns a per-item result indicating success or failure.
+     * @summary Bulk approve entitlement recommendations
+     * @param {SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof SuggestedEntitlementDescriptionV2026Api
+     */
+    public approveBulkEntitlementRecommendations(requestParameters: SuggestedEntitlementDescriptionV2026ApiApproveBulkEntitlementRecommendationsRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).approveBulkEntitlementRecommendations(requestParameters.bulkApproveEntitlementRecommendationRequestV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * Create the initial auto-write settings for a tenant. Returns 409 Conflict if settings already exist. Use PATCH to update existing settings.
      * @summary Create auto-write settings for SED
@@ -143478,6 +146412,30 @@ export class SuggestedEntitlementDescriptionV2026Api extends BaseAPI {
         return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).getSedBatches(requestParameters.offset, requestParameters.limit, requestParameters.count, requestParameters.countOnly, requestParameters.status, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
+    /**
+     * Returns a list of entitlement recommendations (SED and/or privilege) that are currently awaiting review or approval. Each record includes the recommendation type, entitlement details, and any AI-generated suggestions.
+     * @summary List pending entitlement recommendation approvals
+     * @param {SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof SuggestedEntitlementDescriptionV2026Api
+     */
+    public listPendingEntitlementRecommendationApprovals(requestParameters: SuggestedEntitlementDescriptionV2026ApiListPendingEntitlementRecommendationApprovalsRequest = {}, axiosOptions?: RawAxiosRequestConfig) {
+        return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).listPendingEntitlementRecommendationApprovals(requestParameters.offset, requestParameters.limit, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
+    /**
+     * Returns a list of privileged entitlement recommendation groups. Each group aggregates individual entitlement instances that share the same entitlement name and connector type, along with a recommendation score and instance count.
+     * @summary List privileged entitlement recommendations
+     * @param {SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof SuggestedEntitlementDescriptionV2026Api
+     */
+    public listPrivilegedEntitlementRecommendations(requestParameters: SuggestedEntitlementDescriptionV2026ApiListPrivilegedEntitlementRecommendationsRequest = {}, axiosOptions?: RawAxiosRequestConfig) {
+        return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).listPrivilegedEntitlementRecommendations(requestParameters.offset, requestParameters.limit, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * List of Suggested Entitlement Descriptions (SED)  SED field descriptions:  **batchId**: the ID of the batch of entitlements that are submitted for description generation  **displayName**: the display name of the entitlement that we are generating a description for  **sourceName**: the name of the source associated with the entitlement that we are generating the description for  **sourceId**: the ID of the source associated with the entitlement that we are generating the description for  **status**: the status of the suggested entitlement description, valid status options: \"requested\", \"suggested\", \"not_suggested\", \"failed\", \"assigned\", \"approved\", \"denied\"  **fullText**: will filter suggested entitlement description records by text found in any of the following fields: entitlement name, entitlement display name, suggested description, source name
      * @summary List suggested entitlement descriptions
@@ -143490,6 +146448,18 @@ export class SuggestedEntitlementDescriptionV2026Api extends BaseAPI {
         return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).listSeds(requestParameters.limit, requestParameters.offset, requestParameters.count, requestParameters.filters, requestParameters.sorters, requestParameters.countOnly, requestParameters.requestedByAnyone, requestParameters.showPendingStatusOnly, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
+    /**
+     * Partially update a single entitlement recommendation record by its ID. Use this endpoint to update the status, description, or privilege level of a specific SED or privilege recommendation.
+     * @summary Update an entitlement recommendation
+     * @param {SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof SuggestedEntitlementDescriptionV2026Api
+     */
+    public patchEntitlementRecommendation(requestParameters: SuggestedEntitlementDescriptionV2026ApiPatchEntitlementRecommendationRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).patchEntitlementRecommendation(requestParameters.id, requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * Patch Suggested Entitlement Description
      * @summary Patch suggested entitlement description
@@ -143502,6 +146472,18 @@ export class SuggestedEntitlementDescriptionV2026Api extends BaseAPI {
         return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).patchSed(requestParameters.id, requestParameters.sedPatchV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
+    /**
+     * Assign a set of entitlement recommendation records to a reviewer. The assignee can be a specific identity, a governance group, or a role-based assignee such as source owner or entitlement owner. Returns a batch ID that can be used to track the assignment.
+     * @summary Assign entitlement recommendations for review
+     * @param {SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest} requestParameters Request parameters.
+     * @param {*} [axiosOptions] Override http request option.
+     * @throws {RequiredError}
+     * @memberof SuggestedEntitlementDescriptionV2026Api
+     */
+    public submitEntitlementRecommendationsAssignment(requestParameters: SuggestedEntitlementDescriptionV2026ApiSubmitEntitlementRecommendationsAssignmentRequest, axiosOptions?: RawAxiosRequestConfig) {
+        return SuggestedEntitlementDescriptionV2026ApiFp(this.configuration).submitEntitlementRecommendationsAssignment(requestParameters.entitlementRecommendationAssignRequestV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
+    }
+
     /**
      * Submit Bulk Approval Request for SED. Request body takes list of SED Ids. API responses with list of SED Approval Status
      * @summary Submit bulk approval request
@@ -145533,17 +148515,12 @@ export class TenantV2026Api extends BaseAPI {
 export const TenantContextV2026ApiAxiosParamCreator = function (configuration?: Configuration) {
     return {
         /**
-         * Returns a list of key-value pairs representing the current state of the tenant\'s context. 
+         * Returns all key-value pairs representing the current state of the tenant\'s context. Each tenant is limited to a maximum of 100 key-value pairs. 
          * @summary Retrieve tenant context
-         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        getTenantContext: async (xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
-            if (xSailPointExperimental === undefined) {
-                xSailPointExperimental = 'true';
-            }
-            
+        getTenantContext: async (axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
             const localVarPath = `/tenant-context`;
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
@@ -145570,9 +148547,6 @@ export const TenantContextV2026ApiAxiosParamCreator = function (configuration?:
 
 
     
-            if (xSailPointExperimental != null) {
-                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
-            }
             setSearchParams(localVarUrlObj, localVarQueryParameter);
             let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
@@ -145586,17 +148560,12 @@ export const TenantContextV2026ApiAxiosParamCreator = function (configuration?:
          * Allows the user to make incremental updates to tenant context records using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  This endpoint is specifically designed to modify the `/Key/_*` field, supporting operations such as `add`, `remove`, or `replace` to manage key-value pairs.   Note that each tenant is limited to a maximum of 100 key-value pairs. 
          * @summary Update tenant context
          * @param {JsonPatchOperationV2026} jsonPatchOperationV2026 
-         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        patchTenantContext: async (jsonPatchOperationV2026: JsonPatchOperationV2026, xSailPointExperimental?: string, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
+        patchTenantContext: async (jsonPatchOperationV2026: JsonPatchOperationV2026, axiosOptions: RawAxiosRequestConfig = {}): Promise<RequestArgs> => {
             // verify required parameter 'jsonPatchOperationV2026' is not null or undefined
             assertParamExists('patchTenantContext', 'jsonPatchOperationV2026', jsonPatchOperationV2026)
-            if (xSailPointExperimental === undefined) {
-                xSailPointExperimental = 'true';
-            }
-            
             const localVarPath = `/tenant-context`;
             // use dummy base URL string because the URL constructor only accepts absolute URLs.
             const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL);
@@ -145625,9 +148594,6 @@ export const TenantContextV2026ApiAxiosParamCreator = function (configuration?:
     
             localVarHeaderParameter['Content-Type'] = 'application/json-patch+json';
 
-            if (xSailPointExperimental != null) {
-                localVarHeaderParameter['X-SailPoint-Experimental'] = String(xSailPointExperimental);
-            }
             setSearchParams(localVarUrlObj, localVarQueryParameter);
             let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {};
             localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...axiosOptions.headers};
@@ -145649,14 +148615,13 @@ export const TenantContextV2026ApiFp = function(configuration?: Configuration) {
     const localVarAxiosParamCreator = TenantContextV2026ApiAxiosParamCreator(configuration)
     return {
         /**
-         * Returns a list of key-value pairs representing the current state of the tenant\'s context. 
+         * Returns all key-value pairs representing the current state of the tenant\'s context. Each tenant is limited to a maximum of 100 key-value pairs. 
          * @summary Retrieve tenant context
-         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        async getTenantContext(xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<GetTenantContext200ResponseInnerV2026>>> {
-            const localVarAxiosArgs = await localVarAxiosParamCreator.getTenantContext(xSailPointExperimental, axiosOptions);
+        async getTenantContext(axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<Array<GetTenantContext200ResponseInnerV2026>>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.getTenantContext(axiosOptions);
             const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
             const localVarOperationServerBasePath = operationServerMap['TenantContextV2026Api.getTenantContext']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
@@ -145665,12 +148630,11 @@ export const TenantContextV2026ApiFp = function(configuration?: Configuration) {
          * Allows the user to make incremental updates to tenant context records using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  This endpoint is specifically designed to modify the `/Key/_*` field, supporting operations such as `add`, `remove`, or `replace` to manage key-value pairs.   Note that each tenant is limited to a maximum of 100 key-value pairs. 
          * @summary Update tenant context
          * @param {JsonPatchOperationV2026} jsonPatchOperationV2026 
-         * @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        async patchTenantContext(jsonPatchOperationV2026: JsonPatchOperationV2026, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<void>> {
-            const localVarAxiosArgs = await localVarAxiosParamCreator.patchTenantContext(jsonPatchOperationV2026, xSailPointExperimental, axiosOptions);
+        async patchTenantContext(jsonPatchOperationV2026: JsonPatchOperationV2026, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<void>> {
+            const localVarAxiosArgs = await localVarAxiosParamCreator.patchTenantContext(jsonPatchOperationV2026, axiosOptions);
             const localVarOperationServerIndex = configuration?.serverIndex ?? 0;
             const localVarOperationServerBasePath = operationServerMap['TenantContextV2026Api.patchTenantContext']?.[localVarOperationServerIndex]?.url;
             return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath);
@@ -145686,14 +148650,13 @@ export const TenantContextV2026ApiFactory = function (configuration?: Configurat
     const localVarFp = TenantContextV2026ApiFp(configuration)
     return {
         /**
-         * Returns a list of key-value pairs representing the current state of the tenant\'s context. 
+         * Returns all key-value pairs representing the current state of the tenant\'s context. Each tenant is limited to a maximum of 100 key-value pairs. 
          * @summary Retrieve tenant context
-         * @param {TenantContextV2026ApiGetTenantContextRequest} requestParameters Request parameters.
          * @param {*} [axiosOptions] Override http request option.
          * @throws {RequiredError}
          */
-        getTenantContext(requestParameters: TenantContextV2026ApiGetTenantContextRequest = {}, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<GetTenantContext200ResponseInnerV2026>> {
-            return localVarFp.getTenantContext(requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+        getTenantContext(axiosOptions?: RawAxiosRequestConfig): AxiosPromise<Array<GetTenantContext200ResponseInnerV2026>> {
+            return localVarFp.getTenantContext(axiosOptions).then((request) => request(axios, basePath));
         },
         /**
          * Allows the user to make incremental updates to tenant context records using [JSON Patch](https://tools.ietf.org/html/rfc6902) syntax.  This endpoint is specifically designed to modify the `/Key/_*` field, supporting operations such as `add`, `remove`, or `replace` to manage key-value pairs.   Note that each tenant is limited to a maximum of 100 key-value pairs. 
@@ -145703,25 +148666,11 @@ export const TenantContextV2026ApiFactory = function (configuration?: Configurat
          * @throws {RequiredError}
          */
         patchTenantContext(requestParameters: TenantContextV2026ApiPatchTenantContextRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<void> {
-            return localVarFp.patchTenantContext(requestParameters.jsonPatchOperationV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(axios, basePath));
+            return localVarFp.patchTenantContext(requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(axios, basePath));
         },
     };
 };
 
-/**
- * Request parameters for getTenantContext operation in TenantContextV2026Api.
- * @export
- * @interface TenantContextV2026ApiGetTenantContextRequest
- */
-export interface TenantContextV2026ApiGetTenantContextRequest {
-    /**
-     * Use this header to enable this experimental API.
-     * @type {string}
-     * @memberof TenantContextV2026ApiGetTenantContext
-     */
-    readonly xSailPointExperimental?: string
-}
-
 /**
  * Request parameters for patchTenantContext operation in TenantContextV2026Api.
  * @export
@@ -145734,13 +148683,6 @@ export interface TenantContextV2026ApiPatchTenantContextRequest {
      * @memberof TenantContextV2026ApiPatchTenantContext
      */
     readonly jsonPatchOperationV2026: JsonPatchOperationV2026
-
-    /**
-     * Use this header to enable this experimental API.
-     * @type {string}
-     * @memberof TenantContextV2026ApiPatchTenantContext
-     */
-    readonly xSailPointExperimental?: string
 }
 
 /**
@@ -145751,15 +148693,14 @@ export interface TenantContextV2026ApiPatchTenantContextRequest {
  */
 export class TenantContextV2026Api extends BaseAPI {
     /**
-     * Returns a list of key-value pairs representing the current state of the tenant\'s context. 
+     * Returns all key-value pairs representing the current state of the tenant\'s context. Each tenant is limited to a maximum of 100 key-value pairs. 
      * @summary Retrieve tenant context
-     * @param {TenantContextV2026ApiGetTenantContextRequest} requestParameters Request parameters.
      * @param {*} [axiosOptions] Override http request option.
      * @throws {RequiredError}
      * @memberof TenantContextV2026Api
      */
-    public getTenantContext(requestParameters: TenantContextV2026ApiGetTenantContextRequest = {}, axiosOptions?: RawAxiosRequestConfig) {
-        return TenantContextV2026ApiFp(this.configuration).getTenantContext(requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+    public getTenantContext(axiosOptions?: RawAxiosRequestConfig) {
+        return TenantContextV2026ApiFp(this.configuration).getTenantContext(axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 
     /**
@@ -145771,7 +148712,7 @@ export class TenantContextV2026Api extends BaseAPI {
      * @memberof TenantContextV2026Api
      */
     public patchTenantContext(requestParameters: TenantContextV2026ApiPatchTenantContextRequest, axiosOptions?: RawAxiosRequestConfig) {
-        return TenantContextV2026ApiFp(this.configuration).patchTenantContext(requestParameters.jsonPatchOperationV2026, requestParameters.xSailPointExperimental, axiosOptions).then((request) => request(this.axios, this.basePath));
+        return TenantContextV2026ApiFp(this.configuration).patchTenantContext(requestParameters.jsonPatchOperationV2026, axiosOptions).then((request) => request(this.axios, this.basePath));
     }
 }