Validate AD User Encrypted Credentials
All the listed privileges are required -
| Privileges | Description |
|---|---|
| GLOBAL_CONFIG_MANAGEMENT | Caller should have permission to this privilege to validate the encrypted credentials of AD User. |
Request
URI
POST
https://{api_host}/rest/external/v1/ad-users-or-groups/action/validate-user-encrypted-credentials
COPY
Request Body
ADUserEncryptedCredentialSpec of type(s) application/json
Required
{
"domain": "example.com",
"encrypted_password": "9QYxpdXrcrOGPSSz1/K/pJu8QlYT7pDkaKg/rb3hlw4=",
"key_id": "ut0yGq7CbhtBUGfW3ngjkvjQ2cc=",
"protected_password_key": "Qvvjglg5iZinyuldroueo/hQFyqydMMDJPmfYGgIebqxbU9chJ9I8iM9SCBRHSkSW9y+RM",
"username": "testuser or [email protected]"
}string
domain
Optional
The domain of user. Note that domain is optional if UPN is supplied.
string
encrypted_password
Required
Encrypted password for the user.
string
key_id
Required
The keyId of the cluster's SSO KeyPair used to encrypt the protectedPasswordKey.
string
protected_password_key
Required
Decryption key for the password. This key is itself encrypted with cluster's SSO keypair.
string
username
Required
The username or UPN.
Responses
200
OK
Returns ADUserInfo of type(s) */*
{
"domain": "example.com",
"group_guids": [
"5F5A45D9-15C0-4654-8FCF-D589C0EF3ECA",
"6H8S6Y4-35D3-6534-5ERC-A678E3YG4FAD"
],
"group_sids": [
"S-1-5-21-544",
"S-1-5-21-1111111111-2222222222-3333333333-513"
],
"user_guid": "5F5A45D9-15C0-4654-8FCF-D589C0EF3ECA",
"user_principal_name": "[email protected]",
"user_sid": "S-1-5-21-544",
"username": "testuser"
}string
domain
Optional
DNS name of the domain in which this user or group belongs to.
array of string
group_guids
Optional
Guids of the user's groups in RFC 4122 format.
array of string
group_sids
Optional
List of unique SIDs of the groups, this user or group belongs to.
string
user_guid
Optional
GUID of the user in RFC 4122 format.
string
user_principal_name
Optional
User Principal name(UPN) of this user.
string
user_sid
Optional
Unique SID representing this AD User.
string
username
Optional
Username of this user.
400
Bad Request
Operation doesn't return any data structure
401
User is not authenticated
Operation doesn't return any data structure
403
Access to the resource is forbidden
Operation doesn't return any data structure
External Operations
POST
Add Auxiliary Accounts
GET
Audit Events Extended Attributes
POST
Bind
POST
Bulk Hold User Or Group
POST
Bulk Hold User Or Group V2
POST
Bulk Release Hold User Or Group
POST
Bulk Release Hold User Or Group V2
POST
Change User Password
POST
Compute Space Requirements
POST
Compute Vsan Cost
POST
Delete Auxiliary Accounts
GET
Get AD Container
GET
Get AD User Or Group Info
GET
Get Agent Upgrade History
GET
Get Base V Ms V2
GET
Get Default AD Container
GET
List AD Containers
GET
List AD Domains
GET
List AD Domains V2
GET
List AD Domains V3
GET
List AD User Or Group Summary
GET
List Audit Events
GET
List Audit Events V2
GET
List Base Snapshots
GET
List Base Snapshots V2
GET
List Base V Ms
GET
List Base V Ms V2
GET
List Customization Specs
GET
List Datacenters
GET
List Datastore Clusters
GET
List Datastore Paths
GET
Listdatastores
GET
List Domains
GET
List Held Users Or Groups
GET
List Hosts Or Clusters
GET
List Network Interface Cards
GET
List Network Interface Cards V2
GET
List Network Labels
GET
List Resource Pools
GET
List Virtual Disks
GET
List Virtual Machines
GET
List VM Folders
GET
List VM Templates
POST
Unbind
POST
Update
POST
Update Auxiliary Accounts
POST
Validate AD User Encrypted Credentials