Validate AD User Encrypted Credentials
All the listed privileges are required -
Privileges | Description |
---|---|
GLOBAL_CONFIG_MANAGEMENT | Caller should have permission to this privilege to validate the encrypted credentials of AD User. |
AD user encrypted credentials object to be validated.
{
"domain": "example.com",
"encrypted_password": "9QYxpdXrcrOGPSSz1/K/pJu8QlYT7pDkaKg/rb3hlw4=",
"key_id": "ut0yGq7CbhtBUGfW3ngjkvjQ2cc=",
"protected_password_key": "Qvvjglg5iZinyuldroueo/hQFyqydMMDJPmfYGgIebqxbU9chJ9I8iM9SCBRHSkSW9y+RM",
"username": "testuser or [email protected]"
}
The domain of user. Note that domain is optional if UPN is supplied.
Encrypted password for the user.
The keyId of the cluster's SSO KeyPair used to encrypt the protectedPasswordKey.
Decryption key for the password. This key is itself encrypted with cluster's SSO keypair.
The username or UPN.
OK
{
"domain": "example.com",
"group_guids": [
"5F5A45D9-15C0-4654-8FCF-D589C0EF3ECA",
"6H8S6Y4-35D3-6534-5ERC-A678E3YG4FAD"
],
"group_sids": [
"S-1-5-21-544",
"S-1-5-21-1111111111-2222222222-3333333333-513"
],
"user_guid": "5F5A45D9-15C0-4654-8FCF-D589C0EF3ECA",
"user_principal_name": "[email protected]",
"user_sid": "S-1-5-21-544",
"username": "testuser"
}
DNS name of the domain in which this user or group belongs to.
Guids of the user's groups in RFC 4122 format.
List of unique SIDs of the groups, this user or group belongs to.
GUID of the user in RFC 4122 format.
User Principal name(UPN) of this user.
Unique SID representing this AD User.
Username of this user.
Bad Request
User is not authenticated
Access to the resource is forbidden