Initial password not being pushed to AD
Article ID: 124526
Updated On:
Products
CA Identity Manager
CA Identity Governance
CA Identity Portal
Issue/Introduction
Passwords sent via TEWS web service call during the initial on boarding (Create User task) for all new hires in CA IDM are not updated in Active Directory endpoint correctly and users are not able to login to AD with the initial password. Afterwards, when running modify user task the password on the AD endpoint account is updated successfully.
Environment
Release:
Component: IDMGR
Component: IDMGR
Resolution
Configure the initial user create task to add a provisioning role (it can even be a 'dummy' provisioning role) so that the global user is created. This way when you subsequently run the modify task to add the AD role the password from IM will sync to Active Directory.
Feedback
Yes
No
Powered by
