API call to reset the password of a Target Account in PAM
search cancel

API call to reset the password of a Target Account in PAM

book

Article ID: 258103

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Can external REST API be used to reset the password of a Target account? If yes, can you please share the details around that.

Environment

Release : 4.1.x

Resolution

Yes, we have the following API:

PUT /api.php/v1/devices.json/{deviceId}/targetApplications/{applicationId}/targetAccounts

which we can set the password and with the synchronize value set to true, it will validate it as well.

Example:

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=mgZ2F3bVyRXML5AkE9AULg==

Ultimately, I would use the API of:

GET /api.php/v1/devices.json/{deviceId}/targetApplications/{applicationId}/targetAccounts/{accountId}

to see all the attributes that your current user is using.

Also you can use the:

The "_generate_pass_" advises us to generate the password based off of your password composition policy. Example:

{
    "accountId":27001,
    "accountName":"[email protected]",
    "password":"_generate_pass_",
    "synchronize":"t",
    "attributes": {
     "userDN": "CN=ABAJO01,CN=Users,DC=ESR,DC=COM" }
   
}