Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CyberArk Identity Connector - Manage 2-Step Authentication

adriencosson
Valued Contributor
Valued Contributor

‎10/01/2024 05:34 AM

Hi folks,

We have a use case where we need to integrate with CyberArk Cloud to provision users and assign them to safes.

We found below Postman documentation (User Management) where a 2-Step authentication is required : 

Documentation : Advance authentication | CyberArk Identity Postman Collection | Postman API Network

  • First step is to send the username

adriencosson_0-1727786033797.png

  • Second step is to send the Session ID and Mechanism ID associated with first call.

adriencosson_1-1727786047202.png

Anyone was able to handle a 2-Step authentication in a ConnectionJSON ?

Thanks !

Regards,
Adrien COSSON
Labels:
0 Kudos
1 REPLY 1

stalluri
Valued Contributor II
Valued Contributor II

‎10/01/2024 06:23 AM

@adriencosson 
Try this below Json.

{
  "authentications": {
    "userAuth": {
      "authType": "oauth2",
      "url": "XXXXXXXXXXXXXXX",
      "httpMethod": "POST",
      "httpParams": {
        "grant_type": "client_credentials",
        "client_secret": "<<ClientSecret>>",
        "client_id": "<<ClientID>>",
        "resource": "XXXXXXXXXXXXXXX"
      },
      "httpHeaders": {
        "contentType": "application/x-www-form-urlencoded"
      },
      "httpContentType": "application/x-www-form-urlencoded",
      "expiryError": "ExpiredAuthenticationToken",
      "authError": [
        "InvalidAuthenticationToken"
      ],
      "timeOutError": "Read timed out",
      "errorPath": "error.code",
      "maxRefreshTryCount": 5,
      "tokenResponsePath": "access_token",
      "tokenType": "Bearer",
      "accessToken": "Bearer abc"
    },
    "entAuth": {
      "authType": "oauth2",
      "url": "XXXXXXXXXXXXXXX",
      "httpMethod": "POST",
      "httpParams": {
        "grant_type": "client_credentials",
        "client_secret": "<<ClientSecret>>",
        "client_id": "<<ClientID>>",
        "resource": "XXXXXXXXXXXXXXX"
      },
      "httpHeaders": {
        "contentType": "application/x-www-form-urlencoded"
      },
      "httpContentType": "application/x-www-form-urlencoded",
      "expiryError": "ExpiredAuthenticationToken",
      "authError": [
        "InvalidAuthenticationToken",
        "Authentication_MissingOrMalformed"
      ],
      "timeOutError": "Read timed out",
      "errorPath": "odata~dot#error.code",
      "maxRefreshTryCount": 3,
      "tokenResponsePath": "access_token",
      "tokenType": "Bearer",
      "accessToken": "Bearer abcde"
    }
  }
}

Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC