Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Unable to assign Random Password to Saviynt login using ChangePasswordJSON

TVJS
New Contributor II
New Contributor II

‎10/25/2024 11:45 AM

Hello All,

UseCase: We are trying to change Saviynt Login password by generating a ChangePassword Task using SAV4SAV Connector.


ChangePassword Task is getting created and provisioned successfully.
There is an email template to see the password, we are using ${task.password} binding variable and that successfully shows the password generated
but using that password and account_name in the email, we are not able to login to Saviynt.

Please find here the ChangePasswordJSON:

{
"call": [
{
"name": "call1",
"connection": "userAuth",
"url": "https://AbcOrg.com/ECM/api/changePassword",
"httpMethod": "POST",
"httpParams": "{\"username\":\"${user.username}\",\"password\":\"${randomPassword}\",\"changePasswordAssociatedAccounts\":\"true\",\"endpoint\":\"Endpoint#1,Endpoint#2,Endpoint#3\",\"validateagainstpolicy\":\"Y\",\"updateUserPassword\":\"true\",\"setarstasksource\":\"true\"}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
201,
200,
204
]
}
}
]
}

We have not set the Policy in Security System and only set it in PasswordPolicy JSON.

The following variables have been used in the ChangePasswordJSON, but still the password is not working for the user.
the email template is being sent out successfully with a password but we are not able to login to Saviynt using the account_name and password.

The following variables have been used in the ChangePasswordJSON for Sav4Sav connection but still we are unable to login using the passwords generated.
${randomPassword}
${task.password}
${user.password}
$(account.password}

For Example, we have a user Kevin.T who has an identity in saviynt and a SAV4SAV account kevin.t for whom we are generating the changepassword task.
Task is getting created and provisioned, email is getting sent out with password and password is visible in email but the same password is not working when we try to login.

We have tried to hard-code the password in the changepasswordJSON e.g. Summer123 and in that case it works perfectly fine. The same accountname and hardcoded password we are able to login.

No Provisioning errors found in the logs nor are we able to see the random password generated by the ChangepasswordJSON.

In Global Config we have also added the Sav4Sav endpoint under "Settings: Endpoints to Synchronize Password for Self"
and "Settings: Endpoints to Synchronize Password for Others".

Please do let us know if anyone has faced this scenario or have any suggestions for it.

Labels:
0 Kudos
1 REPLY 1

rushikeshvartak
All-Star
All-Star

‎10/25/2024 12:26 PM

Please create application password policy and assign to security system


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos
Copyright © 2024 Khoros, LLC