This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Change Password task not getting triggered

rahul_p
Regular Contributor
Regular Contributor

‎07/11/2023 07:22 AM

Hello Experts,
 
We are having the user update rule which unable to trigger the change password task.
Logs are not showing any error.
 
To debug, we added a test notification which is working but change password task for AD not getting triggered.
 
We are on 23.5 version.
PFB rule:
rahul_p_0-1689085268504.png

 

Thanks,
Rahul
Labels:
0 Kudos
13 REPLIES 13

sk
All-Star
All-Star

‎07/11/2023 07:37 AM

Does the respective user has account on respective endpoint(AD) which you are trying to trigger change password?


Regards,
Saathvik
0 Kudos

armaanzahir
Regular Contributor III
Regular Contributor III

‎07/11/2023 07:41 AM

Hi @rahul_p ,

Do you have a password policy created for this application? The policy also needs to be set at the security system's "Policy Rule" for the tasks to be created and the change password tile to reflect this application via a UI request.

armaanzahir_0-1689086414527.png

Ref: Viewing or Updating Security System (saviyntcloud.com)

Creating Password Policies (saviyntcloud.com)

Regards,
Md Armaan Zahir
0 Kudos

rahul_p
Regular Contributor
Regular Contributor

‎07/11/2023 07:50 AM

Hello @sk ,

The respective user has active account on AD and we are trying to trigger change password of AD.

Hello @armaanzahir ,

Yeah, we have assigned password policy at AD endpoint and at change password action we have selected the AD endpoint.

Thanks,

Rahul

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to rahul_p

‎07/25/2023 01:21 AM - edited ‎07/25/2023 01:21 AM

Does user account is active ? 

Does creating task from postman works ? (For testing)


Regards,
Rushikesh Vartak
0 Kudos

rahul_p
Regular Contributor
Regular Contributor

‎07/24/2023 07:39 AM

Dear Saviynt Team,

Can you please update on this? If this is an open bug then please confirm so we can accordingly we will design our solution.

Waiting for your reply.

Regards,

Rahul

0 Kudos

pmahalle
Valued Contributor II
Valued Contributor II
In response to rahul_p

‎07/24/2023 08:10 AM

Hi @rahul_p ,

Did you have added same AD connection under Password Management Connection in Security System.

pmahalle_0-1690211342133.png

Also put values for all the below fields inside connection:

pmahalle_2-1690211443669.png

 

 

 


Regards,
Pandharinath Mahalle(Paddy)
If this reply answered your question, please Accept it As Solution to help others who may have a similar problem.
0 Kudos

rahul_p
Regular Contributor
Regular Contributor
In response to pmahalle

‎07/25/2023 12:52 AM

Hi @pmahalle ,

We have performed both the configuration i.e. in security system and connection but still its not working.

Please comment.

Regards,

Rahul

0 Kudos

pmahalle
Valued Contributor II
Valued Contributor II
In response to rahul_p

‎07/25/2023 12:55 AM

@rahul_p Your rule is detective, right? Can you try with non-detective rule, put condition on what user update you wanted to trigger change password task.


Regards,
Pandharinath Mahalle(Paddy)
If this reply answered your question, please Accept it As Solution to help others who may have a similar problem.
0 Kudos

rahul_p
Regular Contributor
Regular Contributor
In response to pmahalle

‎07/25/2023 01:22 AM

Hi @pmahalle ,

Thank you for your input and its working. But in our use case we want to trigger the change password action using detective user update rule as change password need account in "Active"state

We are configuring "Re-hire" scenario where account will be in-active or terminated. So in both cases we want to trigger change password action at certain point where account should have been active.

So change password for an account cannot get triggered using detective user update rule, is an open bug? Please confirm?

Regards,

Rahul

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to rahul_p

‎07/25/2023 01:27 AM

If your analysis proof that it does not work then it should be defect, now that will be challenging that whether it was working ever ? If yes that will be considered as enhancement 


Regards,
Rushikesh Vartak
0 Kudos

pmahalle
Valued Contributor II
Valued Contributor II
In response to rahul_p

‎07/25/2023 01:37 AM

Hi @rahul_p ,

Yes change password for an account cannot get triggered using detective user update rule. But I don't think it's bug it's default behavior of Saviynt, otherwise it would keep changing the password for user whenever you run the detective rule run job and conditions matched.

I can suggest one work-around which we are using in our project as well

1. Add one more action in your existing update rule where you are enabling the account "Create Update User Task" and update one of the user's custompropertyX let's say with string "ChangePassword".

2. Create Sav for Sav and under userimport xml, write query to find out all the users with custompropertyX as "ChangePassword" and update same custompropertyX with "PasswordChanged" string.

3. Write one more update rule on user updated through Import with condition (a.status=1 and ## a.custompropertyX isupdated## and a.custompropertyX  ='PasswordChanged") and add action Change Password with your endpoint.

It will trigger Change password task and even your account will be in active state.

Let me know if any challenges.


Regards,
Pandharinath Mahalle(Paddy)
If this reply answered your question, please Accept it As Solution to help others who may have a similar problem.

rahul_p
Regular Contributor
Regular Contributor
In response to pmahalle

‎07/25/2023 03:28 AM

Hey @pmahalle ,

Thank you so much for the reply, let me discuss the same internally and will get back to you soon.

Thanks again.

Regards,

Rahul

rahul_p
Regular Contributor
Regular Contributor

‎07/24/2023 09:45 AM

Hello @pmahalle ,

Let me try this.

Regards,

Rahul

0 Kudos
Copyright © 2023 Khoros, LLC