Click HERE to see how Saviynt Intelligence is transforming the industry. |
08/29/2024 09:16 PM
Hi Team,
We have installed SaviyntPS agent on windows server and attached a SSL cert also.
I am able to run test connection script from postman on SSL port 443.
To make this work from Saviynt rest connector. What needs to be done?
Note: I am able to connect to on non ssl port 80 from Saviynt and PS scripts are triggered.
Can someone help me with steps and pre-requisites
Thanks,
Smitha
Solved! Go to Solution.
08/29/2024 10:38 PM - edited 08/29/2024 10:45 PM
@smitg
We can use two type of connectors.
1. WINCONNECTOR
The connector uses the following connection parameters to connect to the target application:
Yes
Connection Name | Specify the name to identify the connection. | Yes |
Connection Description | Specify the description for the connection. | Yes |
Connection Type | Select the connection type as WINCONNECTOR. | Yes |
Default SAV Role | Specify this parameter to assign the SAV role for the connection. The SAV role is a role in EIC that assigns specific access to users. This parameter is valid only for importing users. Sample value: User assigned with the ROLE_ADMIN role, has access to all the sections of EIC. | No |
Email Template | Specify this parameter to select an email template for sending notifications. Email templates provide immediate trigger of emails to a user based on actions performed. Email informs user about the action performed and if critical, needs immediate action from the user. | Yes |
URL | Specify the path to invoke SaviyntApp deployed in the Windows IIS Server. Syntax: http://<hostname>/<ApplicationName>/PS/ExecutePSScript | Yes |
USERNAME | Specify the username for the Windows IIS Server authentication. | Yes |
PASSWORD | Specify the password to connect to the Windows IIS Server. | Yes |
TESTCONNECTIONJSON | Specify the JSON to test the Win-PS connector endpoint. To define this parameter, use a format similar to the following: JSON |
2. REST:
Connection Json:
{
"authentications": {
"acctAuth": {
"authType": "Basic",
"url": "http://XXXXXX.com/SaviyntApp/PS/ExecutePSScript",
"httpMethod": "POST",
"httpParams": {},
"httpHeaders": {
"Accept": "application/json"
},
"httpContentType": "application/json",
"properties": {
"userName": "XXXXXXXXX",
"password": "xxxx"
},
"expiryError": "ExpiredAuthenticationToken",
"authError": [
"InvalidAuthenticationToken",
"AuthenticationFailed",
"Authentication_MissingOrMalformed",
"Authentication_ExpiredToken"
],
"retryFailureStatusCode": [
403,
401,
500
],
"timeOutError": "Read timed out",
"errorPath": "errors.code",
"maxRefreshTryCount": 5,
"tokenResponsePath": "token",
"tokenType": "Basic",
"accessToken": "Basic abcd"
}
}
}
Create Account JSON:
{
"accountIdPath": "accountName",
"responseColsToPropsMap": {},
"call": [{
"name": "call1",
"connection": "acctAuth",
"showResponse": true,
"url": "http://XXXXXXXX.com/SaviyntApp/PS/ExecutePSScript",
"httpMethod": "POST",
"httpParams": "{\"Script\":\"Powershell.exe -File D:\/test\/run.ps1 \"}",
"httpHeaders": {
"Authorization": "${access_token}",
"Accept": "application/json"
},
"httpContentType": "application/json",
"successResponses":[
{
"message": "ProfileID Created Successfully"
},
{
"message": "ProfileID Updated Successfully"
}
],
"unsuccessResponses": {
"statusCode": [
400,
401,
null
]
}
}]
}
08/30/2024 12:59 AM
@stalluri , I have all this working through non ssl connection. I want the same through SSL connection https over 443 port.
Can you provide details on how to configure that in Saviynt via rest connector
08/30/2024 08:10 AM
Upload SSL certificate in connection and keep URL as https also restart with help of support team so ssl certificate will be picked by connection. UI restart does not work for SSL
08/31/2024 11:01 AM
Thanks for your inputs
I have done these steps. As am using Rest connector can I somehow make sure the connection is established between Saviynt and winPS without running provisioning job. I believe REst connection always shows connection successful and it wont actally tries to establish the connection to target.
08/31/2024 11:27 AM - edited 08/31/2024 05:20 PM
Use testconnectionparams block in connection json
08/31/2024 05:15 PM
@smitg
You can't test it via the Rest connector.
Try using the Connectiontype as WINCONNECTOR and you can test the test-netconnection on
TESTCONNECTIONJSON block.
https://docs.saviyntcloud.com/bundle/WinPS-v24x/page/Content/Creating_a_Connection.htm
09/02/2024 05:42 AM
@stalluri @rushikeshvartak , is there a way to test the soap connection in similar way?
09/02/2024 06:12 AM
Try to create always new thread it become easy to search in future
08/30/2024 11:25 AM