Setting up initiate password reset for REST resource types - PingDirectoryProxy - PingDirectory

Setting up initiate password reset for REST resource types - PingDirectoryProxy - PingDirectory - 9.3

PingDirectory 9.3

bundle

pingdirectory-93

ft:publication_title

PingDirectory 9.3

Product_Version_ce

PingDirectory 9.3 (Latest)

category

Product

pd-93

pingdirectory

ContentType_ce

To initiate a password reset, a given REST resource type must have the ds-pwp-modifiable-state-json delegated admin attribute.

Note:

The ds-pwp-modifiable-state-json delegated admin attribute is not visible on the View/Edit and Reporting pages. It's for internal use only, similar to the ds-pwp-account-disabled attribute.

To enable initiate password reset functionality for a specified REST resource type:

Run dsconfig with the create-delegated-admin-attribute option.

The following example grants "Tenant Users" the initiate password reset functionality through the ds-pwp-modifiable-state-json delegated admin attribute.

dsconfig create-delegated-admin-attribute \
    --type-name "Tenant Users"  \
    --attribute-type ds-pwp-modifiable-state-json  \
    --set "display-name:Modifiable Password Policy State"