03/27/2023 05:23 PM
We have SSO enabled in our current instance so we don't require any passwords to authenticate into Saviynt.
However, the APIs require a username/password in order to authenticate the requests. I have attempted to setup a user and manually specified the password for Admin Functions AND also resetting the password by logging into the service account itself. Both methods still result in 401 unauthorized when attempting to create an access token with the service account credentials.
How should I be setting the password for this service account?
03/27/2023 09:05 PM
Assuming you are already using this api/service account for calling APIs, the localauthenabled attribute on the user profile should already be 1. This attribute dictates whether local authentication would be allowed for a user when SSO is enabled on your application.
In that scenario, you can reset the password for your user using the 'changePassword' API.
Password change via this API would not set passwordexpired to 1 and hence the set password should work.
In case you still see a 401 after a password change via the api, check the localauthenabled value for your user via Analytics.
You can then set the value for localauthenabled as 1 via SaviyntForSaviynt user import or via CustomQuery job.