Hey experts!
We have a use case we have tried testing through and not getting fruitful results. Just wanted to know if the following scenario is possible without the password management module.
The identity provider is Okta but the authentication source on the identity profile is Active Directory. Passwords are shared between the two through delegated authority from Okta to Active Directory.
Currently credentials are delivered in plain text by email. We wanted to leverage the password reset link to set initial password rather than deliver it by email. When attempting to do so we get a succesful password reset message but the password never changes for Okta or Active Directory. We can sign in to IDN through the bypass link with this password though.
Would this scenario be possible? Or do we need any kind of add on to allow this flow to happen?