Comments (6)
AssafMiron
commented on September 18, 2024
Hey @samiron7567 ,
Try concatenating the OTP password with a comma after the password
an example for it (in Powershell) can be seen here:
https://github.com/cyberark/epv-api-scripts/tree/master/Account%20Onboard%20Utility/v10
and a video tutorial by @infamousjoeg here:
https://www.youtube.com/watch?v=zxzUfEUN5dA&t=647s
from epv-api-scripts.
samiron7567
commented on September 18, 2024
Is there a simple way of getting this RestAPI worked with application like Postman? I am not a powershell lover and its hard for me to understand from the referred powershell script.
And mostly why CyberArk has such bad documentation. Everywhere they populated document to use authentication other than OTP. They must provide more info on their documentation sites of how one can use various login procedure for automations.
from epv-api-scripts.
infamousjoeg
commented on September 18, 2024
@samiron7567 our REST API is documented in a Postman collection at https://CYBR.rocks/RESTAPI.
from epv-api-scripts.
AssafMiron
commented on September 18, 2024
@samiron7567 in addition to the public Postman, there is also a swagger documentation on the PVWA instance that is installed at your organization.
Just go to https:///PasswordVault/Swagger
There you will get the up to date REST API methods for your version
from epv-api-scripts.
samiron7567
commented on September 18, 2024
Thanks for the reply @AssafMiron however its same as i was following documentation earlier. It is asking for MFA but there is no guide, where to put MFA actually within the document
curl -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' -d '{ \
"UserName": "aabcdzz", \
"Password": "mypass", \
"Type": "string", \
"SecureMode": true \
}' 'https://pam.example.com/PasswordVault/api/Auth/radius/Logon'
Here is output with Response code 500
{
"ErrorCode": "ITATS542I",
"ErrorMessage": "Enter the current code displayed in the Multi-Factor Authentication or Azure Authenticator mobile app to complete your authentication."
}
from epv-api-scripts.
pspete
commented on September 18, 2024
@samiron7567, when returning ITATS542I, a response to the Radius challenge is expected.
This exception can be caught, and a second authentication request sent containing the OTP as the password value.
Here is some tried & tested code which illustrates the logic: https://github.com/pspete/psPAS/blob/3efbf916908b04ddb761140dffa7cc2914d4df5e/psPAS/Functions/Authentication/New-PASSession.ps1#L540
from epv-api-scripts.
Related Issues (20)
- account_onboard_utility slow with search if only "objectname" is provided HOT 1
- This line uses a function that does not exist in lower Powershell versions. HOT 2
- Should be get-safes instead of get-safe HOT 1
- need to add has not been defined
- Unable to add new member to existing safe with Safe-Management.ps1 HOT 9
- Unable to add new member to existing safe with Safe-Management.ps1 HOT 1
- Unable to add new member to existing safe with Safe-Management.ps1 HOT 1
- Unable to update Account Properties with REST API script. HOT 4
- UpdateMember to alter member permissions on safe HOT 2
- How to properly use Safe Management script when using Shared Services HOT 1
- Consistent handling of CSV delimiters HOT 1
- CSV Output Not Working
- Account onboard utility error HOT 1
- Account Onboard Utility -Delete is taking a very long time per account HOT 3
- Can not use -UpdateMembers Attribute
- Logon Token is empty when running script for Privilege cloud HOT 1
- AOU - unable to create safes based on template safe
- GroupName and GroupPlatformID parameters do not work when using AOU.
- Parsing Error?
- Safe-Management.ps1 roles should match permissions presets
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from epv-api-scripts.