What initial step is required to define a SOD policy using search in IDN?

To define a Segregation of Duties (SOD) policy using search in SailPoint Identity Now (IDN), the initial step involves defining two access lists in the search. This step is crucial because SOD policies aim to prevent conflicts of interest by ensuring that no individual has the ability to execute two or more conflicting tasks. By establishing two distinct access lists, you are able to specify the sets of accesses or roles that should be assessed against each other in order to identify any potential conflicts.

Defining these access lists allows you to configure the policy parameters effectively. Each access list represents a different aspect of user roles or permissions, and the search mechanism will then evaluate these lists to determine if there are overlapping accesses that could lead to violations of the SOD policy. This step sets the foundation for a comprehensive analysis of user permissions against the defined SOD rules.

The other choices, while related to the implementation of security and compliance policies, do not specifically address the foundational requirement for conducting an SOD analysis within the context of search functionalities in IDN. Establishing access roles pertains to user management but does not directly contribute to the initial definition of an SOD policy. Identifying data sources is critical for overall data governance but is not a prerequisite for the