API call to reset the password of a Target Account in PAM
search cancel

API call to reset the password of a Target Account in PAM

book

Article ID: 258103

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Can external REST API be used to reset the password of a Target account? If yes, can you please share the details around that.

Environment

Release : 4.1.x

Resolution

Yes, we have the following API:

PUT /api.php/v1/devices.json/{deviceId}/targetApplications/{applicationId}/targetAccounts

which we can set the password and with the synchronize value set to true, it will validate it as well.

Ultimately, I would use the API of:

GET  /api.php/v1/devices.json/{deviceId}/targetApplications/{applicationId}/targetAccounts/{accountId}

to see all the attributes that your current user is using.

Also you can use the:


The "_generate_pass_" advises us to generate the password based off of your password composition policy. Example:

{
    "accountId":27001,
    "accountName":"<username>@<example.com>",
    "password":"_generate_pass_",
    "synchronize":"t",
    "attributes": {
     "userDN": "CN=XXXX,CN=Users,DC=XXX,DC=XXX" }
   
}

Powered by Wolken Software