I am creating an integration for a legacy system using web services. This system requires a password in the body for user account creation, for example:
{
"user": ""
"password": ""
}
My questions are:
How do I generate a random password when performing the Create account operation, passing it as a variable in the body?
Is there a way for the user to receive this password by email after creating the account?
*This system is not integrated with AD and users are local (database user).
You can generate a password fairly easily. Unfortunately you will not be able to send the generated password via email to the user. It is not best practices to be sending passwords in emails, and Sailpoint has made a point of not storing passwords in logs or emails.
If you are able to set the Password via a Create API call, then you may be able to reset the password via an API too. If you have ISC Password Manager licenses, you could add an HTTP Operation for Change Password. You can create the account with a random password that no one knows, then have the user go to Password Manager and set the password.
To setup a generated password:
In the Account Management section of configuration, create a mapping for Password in Create Account. Select Generator, and choose Generate Password.
In your HTTP Operations: Create Account, add
"password": "$plan.password"to the body JSON.
@Carlatto , thanks for the reply.
How do I now pass the password entered by the user when changing their password to the body in the reset password operation?
This provides information on how to add the HTTP Operation for Change Password: Change Password
When the password is changed in Password Manager, $plan.password$ (or $plan.<password attribute>$) will be populated with whatever the user has entered.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.