Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

Does Saviynt support NTLM authentication in REST connector?

markmch
New Contributor
New Contributor

I'm testing an application from postman that uses NTLM authentication an it works, when I try to connect from Saviynt using a REST connector I get failed error message, does Saviynt support NTLM authentication? If not, what alternatives can I use?

This is the JSON I'm using:

{
"authentications": {
"acctAuth": {
"authType": "NTLM",
"url": "https://appURL/get-users",
"httpMethod": "GET",
"httpParams": {},
"httpHeaders": {
"Content-Type": "application/json"
},
"httpContentType": "application/json",
"properties": {
"userName": "serviceAccount",
"password": "pass"
},
"expiryError": "Couldn't authenticate you",
"authError": [
"Couldn't authenticate you"
],
"timeOutError": "Read timed out",
"errorPath": "error",
"maxRefreshTryCount": 5,
"tokenResponsePath": "access_token",
"tokenType": "NTLM",
"accessToken": "NTLM abcd",
"testConnectionParams": {
"http": {
"url": "https://appURL/get-users",
"httpHeaders": {
"Authorization": "NTLM ${access_token}"
},
"httpContentType": "application/json",
"httpMethod": "GET"
},
"successResponse": [],
"successResponsePath": "",
"errors": [
"Couldn't authenticate you"
],
"errorPath": "error"
}
}
}
}

1 REPLY 1

rushikeshvartak
All-Star
All-Star

NTLM is not supported. Raise idea ticket for same.

Its supported with windows connector [https://ideas.saviynt.com/ideas/EIC-I-4543]

Alternatives to NTLM Authentication in Saviynt:

  • Basic Authentication or OAuth:

    • Basic Authentication: If possible, configure the target application to accept Basic Authentication instead of NTLM.
    • OAuth: For more secure and modern authentication, see if the application supports OAuth, which Saviynt can handle more effectively.
  • Middleware/Proxy Solution:

    • API Gateway: Use an API gateway (e.g., AWS API Gateway, Apigee) to handle NTLM authentication and then pass the appropriate token or credentials to Saviynt.
    • Custom Middleware: Develop a middleware service that handles NTLM authentication and translates it to a format that Saviynt can process (e.g., Basic Auth or Bearer tokens).
  • Kerberos Authentication:

    • If the application supports Kerberos and you have an Active Directory setup, you might configure Saviynt to use Kerberos authentication, which is often supported by applications that also support NTLM.
  • SSO (Single Sign-On):

    • Configure Single Sign-On (SSO) using SAML or OpenID Connect if the target application supports these protocols. Saviynt can integrate with various SSO solutions.
  •  
  •  

Regards,
Rushikesh Vartak
If you find this response useful, kindly consider selecting 'Accept As Solution' and clicking on the 'Kudos' button.