Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Invalid Password Error for 12+ min characters in Rest connection

Go to solution
Mahak_Acharya
Regular Contributor
Regular Contributor

‎08/02/2024 02:34 AM - last edited on ‎08/02/2024 05:11 AM by Community Manager

Hi Team,

We have a requirement for a new Google Joiner where the first time login password must be generated from Saviynt while user creation. The password should be non-complex and of a minimum 16 character length.

I have given the following in my password policy Json, the Json works until the min length defined is 12 characters, beyong 12 characters the tasks start to fail with the below mentioned error. 

PasswordPolicy Json:

{
"minLength": 16,
"noOfCAPSAlpha": 0,
"noOfDigits": 0,
"noOfSplChars": 0
}

Error:

2024-08-02T14:51:15+05:30-ecm-worker-rest.RestProvisioningService-quartzScheduler_Worker-20-jlkd5-DEBUG-Calling Webservice Url - https://admin.googleapis.com/admin/directory/v1/users?domain=XXXX@YY.com  with httpParams - [primaryEmail:amira-test-thirteen1@test.removed.com, orgUnitPath:/User QA/Google Auth users, password=******
2024-08-02T14:51:16+05:30-ecm-worker--null-jlkd5--"message": "Invalid Password=******Password=******

Create Account Json:

{
"accountIdPath":"call1.message.id",
"call": [{
"name": "call1",
"connection": "userAuth",
"url": "https://admin.googleapis.com/A/D/users?domain=XXXX@YY.com",
"httpMethod": "POST",
"httpParams": "{\"primaryEmail\":\"${accountName}\",\"orgUnitPath\":\"/User QA/Google Auth users\",\"password\":\"${password}\",\"changePasswordAtNextLogin\":true}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200
]}
}]
}

Kindly assist in identifying the issue.

Thanks,

Mahak

[This message has been edited by moderator to mask sensitive info]

Labels:
0 Kudos
9 REPLIES 9

Go to solution
NM
Esteemed Contributor
Esteemed Contributor

‎08/02/2024 02:39 AM

Hi @Mahak_Acharya , it could be a restriction from Google end.

Did you verify that they can accept more than 12 character?


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Go to solution
Mahak_Acharya
Regular Contributor
Regular Contributor

‎08/02/2024 03:05 AM

Yes, Google team has updated their policy to 16 characters as well for anyone who is seeting their password post Saviynt generates a password as they are forced to change password at first login.

We are hitting the Google API which has no restrictions from min character perspective and I have tried a direct API call with postman to Google with 16 character password and it works.

The error seems to be Saviynt specific.

 

Thanks,

Mahak

0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to Mahak_Acharya

‎08/02/2024 05:49 PM

  • Password without any special characters ?
  • Is it working from postman ?

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Go to solution
Mahak_Acharya
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎08/05/2024 12:08 AM

Yes, trying to achieve a non-complex password by not using special chars, and it is being sent through via API to Google when i tried from postman.

 

Thanks,

Mahak

0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to Mahak_Acharya

‎08/05/2024 07:16 PM

Please share postman screenshot and curl command [Refer https://codingnconcepts.com/postman/how-to-generate-curl-command-from-postman/ ]



⚠️‼️‼️Do not upload any attachments that contain sensitive information, such as IP Addresses, URLs, Company/Employee Names, Email Addresses, etc.‼️‼️⚠️


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Go to solution
NM
Esteemed Contributor
Esteemed Contributor

‎08/02/2024 03:22 AM

@Mahak_Acharya , attach a password policy in SS and then give it a shot.


If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'
0 Kudos

Go to solution
Mahak_Acharya
Regular Contributor
Regular Contributor
In response to NM

‎08/05/2024 12:09 AM

Tried, but the tasks are still failing with the same error.

 

Thanks,

Mahak

0 Kudos

Go to solution
Mahak_Acharya
Regular Contributor
Regular Contributor

‎08/09/2024 02:53 AM

We were able to make it work by adding the max length attribute in the Json.
 
Updated PasswordPolicy Json:
 
{
"maxLength":15,
"minLength": 15,
"noOfCAPSAlpha": 0,
"noOfDigits": 0,
"noOfSplChars": 0
}
 
Thanks,
Mahak
0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to Mahak_Acharya

‎08/09/2024 02:54 AM

Great as length was not matching during generation it was not meeting policy

Please click the 'Accept As Solution' button on the reply (or replies) that best answered your original question and hit 'Kudos' button 👍.


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC