and more in a single search tool across platforms. Read the announcement here. |
04/12/2022 01:23 PM
Yes, we need to use User scope password policy
Yes, and its configurable
Yes, it can be configured in password policy
Yes. This is configurable in the Password Policy in below config
Expire After: Configure the number of days after which user password should expire and pre-packaged controls will expire user password after configured number of days
Days to Notify Before Password Expire: Pre-packed controls will be rolled out that checks the config and send out notification based on days configured
Step Up authentication - Users can choose a method of verification such as Email OTP, SMS OTP, or answer preconfigured security questions
Note: Look forward to more on this in upcoming Did you know series.
Solved! Go to Solution.
04/12/2022 03:13 PM
Can you give more information on Reverse Password Sync?
I don't think I can use the password column on a user row to provision password to a system. I could use a clear text column, or I could store an encrypted value, and then decrypt it in my connector. Using a custom attribute doesn't tie in with password changes in Saviynt though.
How does Reverse Password Sync work today in the product?
--Jim
04/12/2022 03:13 PM
Hello Jim,
Please refer Freshdesk documentation here for Reverse Password Sync - https://saviynt.freshdesk.com/support/solutions/articles/43000547503-active-directory-ad-connector-g...
04/12/2022 03:13 PM
04/12/2022 03:13 PM
Hi Jim,
For passwords to be pushed from Saviynt to connected apps using reverse password sync, we need to mention the endpoint details in the json in endpoints attribute - Refer Configure Saviynt Connection in above freshdesk link.
Saviynt will pick up the endpoints and then create change password tasks for user accounts in connected applications and provisioning job will pick up the tasks and provision it to the target apps.
04/12/2022 03:13 PM
04/12/2022 03:13 PM
Jim,
We do support to change user account password when user password change is initiated in Saviynt. Change Password Task for the Endpoints configured in Point 4 would be created according to the password policy associated with the application. For provisioning the change password tasks to connected applications, we need to configure Change password json in the respective connector associated with the application