Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Password sync issue for users with different username and samaccountname

Go to solution
chetan_falke
New Contributor
New Contributor

‎12/09/2022 12:48 AM - edited ‎12/09/2022 01:34 AM

 

We are facing problem for users who are having different samaccountname and username. When these users are trying to change the password from AD or Okta their password is not getting sync back.

 

We have observed this is because of correlation field which is set as username in password filter Json which is present in password sync agent in AD.  

 

Our concern is can we use AD attribute like employee id or extension attribute 15 for password sync agent instead of samAccount Name.

 

Please find the below json :

 

{
  "saviynt": {
    "baseUrl": "hostname",
    "userName": "admin",
    "password": "XXXXXX",
    "notificationUrl": "hostname",
    "getUserUrl": "hostname",
    "correlation": "employeeid",
    "endpoints": "abc,def",
    "sourceEndpoint": "def"
},
  "filter": {
    "enabled": false,
    "policy": {
      "enforce":  "local",
      "local": {
        "minChars": 10,
        "maxChars": 20,
        "lowerCases": 1,
        "upperCases": 1,
        "numbers": 1,
        "specials": 1
      }
    }
  },
  "notification": {
    "enabled": true
  }
}

Labels:
0 Kudos
5 REPLIES 5

Go to solution
rushikeshvartak
All-Star
All-Star

‎12/09/2022 04:21 AM

It should be user attribute 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Go to solution
chetan_falke
New Contributor
New Contributor
In response to rushikeshvartak

‎12/12/2022 07:40 PM

If it should be user attribute, then can we use custom properties of users too and how to do mapping of user attribute with AD attribute in Password agent?

0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to chetan_falke

‎12/12/2022 07:47 PM

    "correlation": "customproperty1",


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Go to solution
chetan_falke
New Contributor
New Contributor
In response to rushikeshvartak

‎12/12/2022 08:50 PM

Where do we define AD attribute to be mapped?

For Eg. i have to mapp extensionattribute12 with customproperty1

0 Kudos

Go to solution
rushikeshvartak
All-Star
All-Star
In response to chetan_falke

‎12/12/2022 09:36 PM

That will be mapped in ad connection isn’t it


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC