We have checked the scripts and workflows, but we are unclear on how SailPoint IdentityNow updates this password in both AD and SailPoint. Could you provide clarification on where and how this password generation logic is applied within the system, and how the password gets updated in Active Directory after being generated? Specifically, how does SailPoint handle this password synchronization with AD and ensure it’s set correctly for the user?
Our HR source is OracleHCM.
We do have an Email template which triggers the below steps to the Managers.
ex : we have a specific combination with first name, last name and Organization details
Have you checked if there is any cloud rule (other than Create Password) that is tagged to your password attribute in the create account section.? Reference
we do not have any cloud rule which generates the password in Active directory source and also we do not have logic in the scripts but when the users get onboarded the initial passsword is getting set in both AD and sailpoint we need to know if any process is aligned to set the password after creation.
Looks like this is handled through a transform within your create account policy.
If you have the VScode plugin installed, check for the account provisioning policies else, use postman to call the below API to see how the password transform is setup.
