AM 7.4.1

Identify Existing User node

Verifies a user exists based on an identifying attribute, such as an email address, then makes the value of a specified attribute available in the shared node state.

Use this node in a forgotten password flow to fetch a username to email to the user. To display the username on the screen, use the Display Username node instead.

Compatibility

Product Compatible?

ForgeRock Identity Cloud

ForgeRock Access Management (self-managed)

This functionality requires that you configure AM as part of a ForgeRock Identity Platform deployment.

ForgeRock Identity Platform (self-managed)

Properties

Property Usage

Identifier

The attribute to collect from an IDM object.

Identity Attribute

The attribute used to identify the object in IDM.

When this node serves to recover a username, the identity attribute should be some other attribute that is unique to a user object, such as the email address.

Example

The following is an example of a forgotten password flow. The user enters information that the Identify Existing User node uses to try to identify them. Next, AM uses the Email Suspend node to send an email to the user and suspend authentication. Once authentication resumes, AM sends the user to a different flow to reset their password:

The Identify Existing User node used when resetting a forgotten password