---
title: SpyCloud Auth Node
description: Use the SpyCloud Auth node to integrate the SpyCloud service with Advanced Identity Cloud and assess if a user's password is compromised. If a user's password is compromised, the administrator can take remedial action, such as denying access and asking the user to reset their password, or forcing a password reset.
component: auth-node-ref
version: latest
page_id: auth-node-ref:cloud:spycloud-auth
canonical_url: https://docs.pingidentity.com/auth-node-ref/latest/cloud/spycloud-auth.html
page_aliases: ["auth-node-spycloud.adoc"]
section_ids:
  example: Example
  availability: Availability
  inputs: Inputs
  dependencies: Dependencies
  configuration: Configuration
  outputs: Outputs
  outcomes: Outcomes
  troubleshooting: Troubleshooting
---

# SpyCloud Auth Node

Use the SpyCloud Auth node to integrate the SpyCloud service with Advanced Identity Cloud and assess if a user's password is compromised. If a user's password is compromised, the administrator can take remedial action, such as denying access and asking the user to reset their password, or forcing a password reset.

## Example

The following sample journey illustrates the use of this node to assess if a user's password is compromised:

![spycloud auth journey](_images/spycloud-auth-journey.png)

## Availability

| Product                               | Available? |
| ------------------------------------- | ---------- |
| PingOne Advanced Identity Cloud       | Yes        |
| PingAM (self-managed)                 | Yes 1      |
| Ping Identity Platform (self-managed) | Yes 1      |

1 For self-managed products, download the node from the [Ping Identity Marketplace](https://marketplace.pingone.com/item/spycloud-auth-nodes).

## Inputs

This node reads a customizable user identifier from shared state. The identifier is set in the `identifierSharedStateKey` property in the node configuration.

## Dependencies

To use this node, you should have already set up integration with the SpyCloud service in PingOne Advanced Identity Cloud. Refer to the SpyCloud documentation to set up the SpyCloud service in your environment.

## Configuration

| Property                 | Usage                                                                                                                                  |
| ------------------------ | -------------------------------------------------------------------------------------------------------------------------------------- |
| API URL                  | The SpyCloud API URL.                                                                                                                  |
| API Key                  | The SpyCloud API key.                                                                                                                  |
| Severity                 | Allows you to filter based on the numeric severity code. You can find more information about severity codes in SpyCloud documentation. |
| identifierSharedStateKey | The shared state key to find the identifier value.                                                                                     |

## Outputs

Only when an error occurs does this node store the error in shared state.

## Outcomes

* `Compromised`

  Compromised password detected.

* `Not compromised`

  Password is not compromised.

* `Error`

  There was an error while assessing if the password was compromised.

## Troubleshooting

If this node logs an error, then an error message is sent to shared state. For example:

* `"[SpyCloud] StackTrace", new Date() + ": " + stackTrace`

* `"[SpyCloud] Exception", new Date() + ": " + ex.getMessage()`

Review the log messages to find the reason for the error and address the issue appropriately.