Looking to use IdentityNow for account onboarding and then ultimately rewriting a randomized temp password in AD to the user’s entered password through registration in IdentityNow. Flow goes like this:
- Auth source has a newly on-boarded user.
- Auth source aggregation created new Identity
- Lifecycle state created an AD account by default, with a randomized unknown password.
- IDN automatically sends out invitation emails to everyone onboarded.
- User responds email and creates permanent password.
From the IdentityNow has the correct password, but we need that sent down to AD automatically. Would we need to use a sync group for this with only AD included? Or are there other options? Workflow maybe? Just want to make sure I’m not missing something simple. Thanks