Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

Set active directory password using firstname lastname initials

Kaustubh
Regular Contributor
Regular Contributor

Continuing from previous thread: Solved: Re: Generate AD password based on initials of firs... - Saviynt Forums - 111969

I added ${this.binding.variables.each {RVkey,RVvalue -> println "$RVkey ------- $RVvalue" + "" + "br" + ">"}} and got binding variables.

I created a dynamic attribute at Endpoint as:

Kaustubh_0-1725567714346.png

SQL query:

SELECT CONCAT( CASE LOWER(SUBSTRING(FIRSTNAME, 1, 1)) WHEN 'a' THEN 'Alfa' WHEN 'b' THEN 'Bravo' WHEN 'c' THEN 'Charlie' WHEN 'd' THEN 'Delta' WHEN 'e' THEN 'Echo' WHEN 'f' THEN 'Foxtrot' WHEN 'g' THEN 'Golf' WHEN 'h' THEN 'Hotel' WHEN 'i' THEN 'India' WHEN 'j' THEN 'Juliett' WHEN 'k' THEN 'Kilo' WHEN 'l' THEN 'Lima' WHEN 'm' THEN 'Mike' WHEN 'n' THEN 'November' WHEN 'o' THEN 'Oscar' WHEN 'p' THEN 'Papa' WHEN 'q' THEN 'Quebec' WHEN 'r' THEN 'Romeo' WHEN 's' THEN 'Sierra' WHEN 't' THEN 'Tango' WHEN 'u' THEN 'Uniform' WHEN 'v' THEN 'Victor' WHEN 'w' THEN 'Whiskey' WHEN 'x' THEN 'X-ray' WHEN 'y' THEN 'Yankee' WHEN 'z' THEN 'Zulu' END, CASE LOWER(SUBSTRING(LASTNAME, 1, 1)) WHEN 'a' THEN 'Alfa' WHEN 'b' THEN 'Bravo' WHEN 'c' THEN 'Charlie' WHEN 'd' THEN 'Delta' WHEN 'e' THEN 'Echo' WHEN 'f' THEN 'Foxtrot' WHEN 'g' THEN 'Golf' WHEN 'h' THEN 'Hotel' WHEN 'i' THEN 'India' WHEN 'j' THEN 'Juliett' WHEN 'k' THEN 'Kilo' WHEN 'l' THEN 'Lima' WHEN 'm' THEN 'Mike' WHEN 'n' THEN 'November' WHEN 'o' THEN 'Oscar' WHEN 'p' THEN 'Papa' WHEN 'q' THEN 'Quebec' WHEN 'r' THEN 'Romeo' WHEN 's' THEN 'Sierra' WHEN 't' THEN 'Tango' WHEN 'u' THEN 'Uniform' WHEN 'v' THEN 'Victor' WHEN 'w' THEN 'Whiskey' WHEN 'x' THEN 'X-ray' WHEN 'y' THEN 'Yankee' WHEN 'z' THEN 'Zulu' END, '@', DATE_FORMAT(startdate, '%b'), DATE_FORMAT(startdate, '%Y') ) AS ID FROM USERS where userkey=${requestee}

I want to pass value of this dynamic attribute to unicodePwd attribute of Active directory. How should I pass?

Also tried adding the dynamic attribute in email templates (to share password):

1. ${requestAccessAttributes?.get('adPassLogic')}
2. ${task?.requestAccessKey?.collect{it.request_access_attrss.findAll{it.attributeName.toString().equalsIgnoreCase('adPassLogic')}.collect{it.attributeValue}}.get(0)} (Output- '[]')

3. task?.requestAccessKey?.collect { it?.request_access_attrss?.findAll { attr -> attr?.attributeName?.toString()?.equalsIgnoreCase('adPassLogic') }?.collect { attr -> attr?.attributeValue } }?.flatten()?.join(', ') ?: 'N/A' (Output - same query in email)


Kaustubh Pawar
Saviynt Certified IGA Professional
10 REPLIES 10

rushikeshvartak
All-Star
All-Star

Share bininding variables


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Received in mail
Kaustubh_0-1725568560229.png


Kaustubh Pawar
Saviynt Certified IGA Professional

Share in text format


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

resourceOwners ------- br> tasktype ------- New Accountbr> manager ------- Test001.Users1@xxxx.combr> accountOwners ------- []br> randompassword ------- ZFQboBm*C2lZRLDnmDbr> entitlement ------- []br> provisioningOwners ------- br> users ------- Test002_Users1@xxxxcombr> requestor ------- kauxxxxx.combr> out ------- java.io.PrintWriter@25545436br> account_password ------- XXXXXXXbr> task ------- com.saviynt.ecm.task.ArsTasks : 4134br> accountname ------- Test002_Users1@xxxxxcom Password - ZFQboBm*C2lZRLDnmDbr> requestid ------- 1715221br> endpointDisplayName ------- Active Directory Devbr> account_name ------- Test002_Users1xxxxxcombr> endpointOwners ------- br> requestormanager ------- abcs.xyz.xxxxx.combr> baseUrlForEmail ------- https://hostname.saviyntcloud.com/ECMbr> user ------- Test002_Users1@xxxxxcombr> taskaction ------- New Accountbr> account ------- Test002_Users1@xxxxxcombr> [resourceOwners:, tasktype:New Account, manager:Test001.Users1@xxxxx.com, accountOwners:[], randompassword:ZFQboBm*C2lZRLDnmD, entitlement:[], provisioningOwners:, users:Test002_Users1@xxxxxcom, requestor:kaustubh.pawar@xxxxx.com, out:java.io.PrintWriter@25545436, account_password:XXXXXXX, task:com.saviynt.ecm.task.ArsTasks : 4134, accountname:Test002_Users1@xxxxxcom Password - ZFQboBm*C2lZRLDnmD, requestid:1715221, endpointDisplayName:Active Directory Dev, account_name:Test002_Users1@xxxxxcom, endpointOwners:, requestormanager:abcs.xyz.xxxxx.com, baseUrlForEmail:https://hostname.saviyntcloud.com/ECM, user:Test002_Users1@xxxxxcom, taskaction:New Account, account:Test002_Users1@flyscootcom] []


Kaustubh Pawar
Saviynt Certified IGA Professional

account_password  did you tried ?

 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

It shows xxxxx


Kaustubh Pawar
Saviynt Certified IGA Professional

stalluri
Valued Contributor II
Valued Contributor II


@Kaustubh 

${account_password}

Obtains the password of the new account.

Starting with Release v23.5, if the ${account_password} variable is used with this email template, the following behaviours will occur:

  • If the email template containing the beneficiary is added to the TO, CC, or BCC fields, then all recipients mentioned in those fields including the beneficiary will receive the password in clear text format.

  • If the email address of the beneficiary is not included in the TO, CC, or BCC fields of the email template, all recipients included in that template will receive an email with the password masked as “XXXXXXX”.


Best Regards,
Sam Talluri
If you find this a helpful response, kindly consider selecting Accept As Solution and clicking on the kudos button.

${task.password}
${password}
${account_password} 

try above and let us know results 


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

NM
Honored Contributor II
Honored Contributor II

Hi @Kaustubh as per the image you have hidden the dynamic attribute it won't work you need to show om ARS page.. then it will work.

Amit_Malik
Valued Contributor II
Valued Contributor II

Try changing hide on create as false and see if it works. 

 

Kind Regards,
Amit Malik
If this helped you move forward, please click on the "Kudos" button.
If this answers your query, please select "Accept As Solution".