Saviynt Forums

Mahak_Acharya · ‎08/02/2024

Hi Team,

We have a requirement for a new Google Joiner where the first time login password must be generated from Saviynt while user creation. The password should be non-complex and of a minimum 16 character length.

I have given the following in my password policy Json, the Json works until the min length defined is 12 characters, beyong 12 characters the tasks start to fail with the below mentioned error.

PasswordPolicy Json:

{
"minLength": 16,
"noOfCAPSAlpha": 0,
"noOfDigits": 0,
"noOfSplChars": 0
}

Error:

2024-08-02T14:51:15+05:30-ecm-worker-rest.RestProvisioningService-quartzScheduler_Worker-20-jlkd5-DEBUG-Calling Webservice Url - https://admin.googleapis.com/admin/directory/v1/users?domain=XXXX@YY.com with httpParams - [primaryEmail:amira-test-thirteen1@test.removed.com, orgUnitPath:/User QA/Google Auth users, password=******
2024-08-02T14:51:16+05:30-ecm-worker--null-jlkd5--"message": "Invalid Password=******Password=******

Create Account Json:

{
"accountIdPath":"call1.message.id",
"call": [{
"name": "call1",
"connection": "userAuth",
"url": "https://admin.googleapis.com/A/D/users?domain=XXXX@YY.com",
"httpMethod": "POST",
"httpParams": "{\"primaryEmail\":\"${accountName}\",\"orgUnitPath\":\"/User QA/Google Auth users\",\"password\":\"${password}\",\"changePasswordAtNextLogin\":true}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200
]}
}]
}

Kindly assist in identifying the issue.

Thanks,

Mahak

[This message has been edited by moderator to mask sensitive info]

NM · ‎08/02/2024

Hi @Mahak_Acharya , it could be a restriction from Google end.

Did you verify that they can accept more than 12 character?

Mahak_Acharya · ‎08/02/2024

Yes, Google team has updated their policy to 16 characters as well for anyone who is seeting their password post Saviynt generates a password as they are forced to change password at first login.

We are hitting the Google API which has no restrictions from min character perspective and I have tried a direct API call with postman to Google with 16 character password and it works.

The error seems to be Saviynt specific.

Thanks,

Mahak

rushikeshvartak · ‎08/02/2024

Password without any special characters ?
Is it working from postman ?

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Mahak_Acharya · ‎08/05/2024

Yes, trying to achieve a non-complex password by not using special chars, and it is being sent through via API to Google when i tried from postman.

Thanks,

Mahak

rushikeshvartak · ‎08/05/2024

Please share postman screenshot and curl command [Refer https://codingnconcepts.com/postman/how-to-generate-curl-command-from-postman/ ]

⚠️‼️‼️Do not upload any attachments that contain sensitive information, such as IP Addresses, URLs, Company/Employee Names, Email Addresses, etc.‼️‼️⚠️

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

NM · ‎08/02/2024

@Mahak_Acharya , attach a password policy in SS and then give it a shot.

Mahak_Acharya · ‎08/05/2024

Tried, but the tasks are still failing with the same error.

Thanks,

Mahak

Mahak_Acharya · ‎08/09/2024

We were able to make it work by adding the max length attribute in the Json.

Updated PasswordPolicy Json:

{

"maxLength":15,

"minLength": 15,

"noOfCAPSAlpha": 0,

"noOfDigits": 0,

"noOfSplChars": 0

}

Thanks,

Mahak

rushikeshvartak · ‎08/09/2024

Great as length was not matching during generation it was not meeting policy

✅Please click the 'Accept As Solution' button on the reply (or replies) that best answered your original question and hit 'Kudos' button 👍.

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Saviynt Forums

Invalid Password Error for 12+ min characters in Rest connection