Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP EnableAccountJSON randomPassword not working?

TimoR
Regular Contributor
Regular Contributor

‎06/12/2024 06:38 AM

Hi,

I am trying to reset the password of a SAP account in the EnableAccountJSON:

{
  "LOGONDATA": {
    "GLTGV": "${new java.text.SimpleDateFormat('yyyyMMdd').format(new Date())}",
    "GLTGB": "${usersObj?.enddate==null?'99991231': new java.text.SimpleDateFormat('yyyyMMdd').format(usersObj?.enddate)}"
  },
  "PASSWORD": {
    "BAPIPWD": "${randomPassword}" 
  }
}

The documentation for SAP also clearly states that randomPassword for enabling an account is available:

https://docs.saviyntcloud.com/bundle/SAP-v24x/page/Content/Configuring-the-Integration-for-Provision... 

However, when I try to use it, the variables in the generated email look like this:

resourceOwners =
tasktype = Enable Account
manager = 1000330
accountOwners = []
randompassword = null
entitlement = []
provisioningOwners =
users = K_123588
requestor = xxx
out = java.io.PrintWriter@3b132686
account_password = null
task = com.saviynt.ecm.task.ArsTasks : 118189
accountname = K_123588 Updated Password - null
requestid = 2701156
endpointDisplayName = S4-E11
account_name = K_123588
endpointOwners = xxx
baseUrlForEmail = https://release-n-plus-one.saviyntcloud.com/ECM
user = K_123588
taskaction = Enable Account
account = K_123588

All variables containing the password are NULL.
For CreateAccountJSON, it works fine, however not for EnableAccountJSON.

Any reason this could be?

0 Kudos
7 REPLIES 7

rushikeshvartak
All-Star
All-Star

‎06/13/2024 10:21 PM

  • Did you defined password policy in connection/ attached password policy to security system?
  • Do you see any error in logs ?

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

TimoR
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎06/13/2024 11:23 PM

Hi,

there is a password policy defined and selected in the security system, yes.

The logs show no error, I could even find where it uses the correct password policy:

2024-06-12T15:07:40+02:00-ecm-worker-services.SaviyntCommonUtilityService-quartzScheduler_Worker-10-727zm-DEBUG-password policyRule: SAP RISE
2024-06-12T15:07:40+02:00-ecm-worker-services.SaviyntCommonUtilityService-quartzScheduler_Worker-10-727zm-DEBUG-Generating password from policy defined in connection params
 
But at least the variables in the generated email stay null.
 
Regards,
Timo Rothweiler
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to TimoR

‎06/15/2024 10:32 PM

use ${task.password}


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

TimoR
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎06/17/2024 12:19 AM

If you mean to use it in EnableAccountJSON instead of ${randomPassword}, i just tried that, and it didn't work either. The password was "null" again:

resourceOwners =
tasktype = Enable Account
manager = 1000330
accountOwners = []
randompassword = null
entitlement = []
provisioningOwners =
users = K_123580
requestor = xxx
out = java.io.PrintWriter@31a6cb65
account_password = null
task = com.saviynt.ecm.task.ArsTasks : 118196
accountname = K_123580 Updated Password - null
requestid = 2730128
endpointDisplayName = S4-E11-ReadOnly
account_name = K_123580
endpointOwners = xxx
baseUrlForEmail = https://release-n-plus-one.saviyntcloud.com/ECM
user = K_123580
taskaction = Enable Account
account = K_123580

Hi Sechs iam-test,
your SAP E11 account has been enabled for you. Below is the information related to your account including the account name and its new password.
0 Kudos

TimoR
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎06/25/2024 12:03 AM

Do you have any other suggestions what could be wrong why the password is NULL?

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to TimoR

‎06/25/2024 09:36 PM

${task?.password}

${password}

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

TimoR
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎06/25/2024 11:51 PM

I put those different variables in my email template.

The email I receive upon enabling the account is this:

 
Hi ${user.firstname} ${user.lastname},
your SAP E11 account has been enabled for you. Below is the information related to your account including the account name and its new password.
 
Account Name: ${account_name}
Password: ${task.password}
Password2: ${task?.password}
Password3: ${password}
 
Now the variables don't even get replaced anymore.
0 Kudos
Copyright © 2024 Khoros, LLC