Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

Synchronize the same password across different security systems

AndreaG
New Contributor
New Contributor

Hello,

we need to implement the following scenario: Saviynt is integrated with two different Directory Services (Windows AD and Oracle OUD, both LDAP-based) and the accounts for the users are provisioned on both systems. The need is to have the same password for the two accounts in the two LDAP systems belonging to the same user/person.

Saviynt cannot push the same password across two different target systems and, in order to sync the two passwords, the only way is to ask the user perform the reset password twice and to input the same password for the two systems.
We are developing a custom WebService (REST API based, configured with a Saviynt REST connector) that intercept the manual input password and propagate it to the LDAP directories but the client don't want custom programs that write to the target systems.

For this reason we are thinking about a slightly different solution: the custom WS will only intercept the user password and then it will trigger a job inside Saviynt via an API call to let Saviynt run the workflow for writing the password on both target systems: is this new solution achievable?

I can provide diagrams to show the overall flow or other details if needed.

Thank you.

6 REPLIES 6

pmahalle
All-Star
All-Star

@AndreaG ,

You can utilize Password synchronization feature. 

Refer below document:

https://docs.saviyntcloud.com/bundle/EIC-Admin-v24x/page/Content/Chapter14-Password-Management/Confi...


Pandharinath Mahalle(Paddy)
If this reply helps your question, please consider selecting Accept As Solution and hit Kudos 🙂

AndreaG
New Contributor
New Contributor

@pmahalle  Thanks for the prompt reply.

We are discussing this internally since there are issues with installing additional software components into the domain controllers.

Furthermore it looks this solution does not address the password sync with Oracle Unified Directory but just in Active Directory: could you please confirm that?

Hi @AndreaG ,

We use this solution with Open DJ directory long back in one of the older Saviynt version, so ideally it should work with OUD as well but confirm with Saviynt once. 


Pandharinath Mahalle(Paddy)
If this reply helps your question, please consider selecting Accept As Solution and hit Kudos 🙂

rushikeshvartak
All-Star
All-Star

Can you share high level process


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.

ScreenShot2767.png

 

hope this helps.

Thank you.

Dhruv_S
Saviynt Employee
Saviynt Employee

Hi @AndreaG 

If the requirement is to send same password to multiple accounts like AD account, OUD account for the same user. 

You can do it at the time of reset password request itself from Saviynt by selecting multiple accounts together like below. 

PasswordReset.PNG

 

Regards,

Dhruv Sharma