
<div dir="ltr"><div>Hi,</div><div><br></div><div>please read this:</div><div><a href="https://docs.evolveum.com/midpoint/reference/security/credentials/initial-password-management-discussion/#active-directory-password-synchronization">https://docs.evolveum.com/midpoint/reference/security/credentials/initial-password-management-discussion/#active-directory-password-synchronization</a><br></div><div><br></div><div>best regards,</div><div><br></div><div>Gustav</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">st 9. 6. 2021 o 20:08 Rod Holman via midPoint <<a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>> napísal(a):<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">


<div lang="EN-US">

<div class="gmail-m_-5076259897273163283WordSection1">

<p class="MsoNormal">Hi All,<u></u><u></u></p>

<p class="MsoNormal"><u></u> <u></u></p>

<p class="MsoNormal">We have been able to set up attribute updating for both inbound and outbound, but can it also be setup for passwords?  I have one attribute listed below that we use with Active Directory that allows us to change it in AD or Midpoint.  We

 are trying to do the same thing with the password, allow it to be updated in either midpoint or Active Directory and sync it with any other system the user is attached to.  When we update the password in Active Directory it doesn’t update to the same password

 in Midpoint, but it removes the password completely.  I’m pretty sure it’s because Active Directory has it encrypted.  Is there a way to do this?  Thanks in advance for any help with this.<u></u><u></u></p>

<p class="MsoNormal"><u></u> <u></u></p>

<p class="MsoNormal"><attribute id="104"><u></u><u></u></p>

<p class="MsoNormal">                <c:ref xmlns:ri="<a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" target="_blank">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3</a>">ri:mail</c:ref><u></u><u></u></p>

<p class="MsoNormal">                <tolerant>false</tolerant><u></u><u></u></p>

<p class="MsoNormal">                <exclusiveStrong>false</exclusiveStrong><u></u><u></u></p>

<p class="MsoNormal">                <outbound><u></u><u></u></p>

<p class="MsoNormal" style="margin-left:0.5in">      <strength>normal</strength><u></u><u></u></p>

<p class="MsoNormal">                    <source><u></u><u></u></p>

<p class="MsoNormal">                        <c:path>emailAddress</c:path><u></u><u></u></p>

<p class="MsoNormal">                    </source><u></u><u></u></p>

<p class="MsoNormal">                </outbound><u></u><u></u></p>

<p class="MsoNormal">                <inbound id="117"><u></u><u></u></p>

<p class="MsoNormal">                    <strength>strong</strength><u></u><u></u></p>

<p class="MsoNormal">                    <target><u></u><u></u></p>

<p class="MsoNormal">                        <c:path>emailAddress</c:path><u></u><u></u></p>

<p class="MsoNormal">                    </target><u></u><u></u></p>

<p class="MsoNormal">                </inbound><u></u><u></u></p>

<p class="MsoNormal">            </attribute><u></u><u></u></p>

<p class="MsoNormal"><u></u> <u></u></p>

<p class="MsoNormal"><password xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance" target="_blank">http://www.w3.org/2001/XMLSchema-instance</a>" xmlns:c="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" xsi:type="c:ResourcePasswordDefinitionType"><u></u><u></u></p>

<p class="MsoNormal">                    <outbound><u></u><u></u></p>

<p class="MsoNormal">                        <authoritative>false</authoritative><u></u><u></u></p>

<p class="MsoNormal">                        <exclusive>false</exclusive><u></u><u></u></p>

<p class="MsoNormal">                        <strength>normal</strength><u></u><u></u></p>

<p class="MsoNormal">                    </outbound><u></u><u></u></p>

<p class="MsoNormal">                    <inbound><u></u><u></u></p>

<p class="MsoNormal">                        <authoritative>false</authoritative><u></u><u></u></p>

<p class="MsoNormal">                        <exclusive>false</exclusive><u></u><u></u></p>

<p class="MsoNormal">                        <strength>strong</strength><u></u><u></u></p>

<p class="MsoNormal">                    </inbound><u></u><u></u></p>

<p class="MsoNormal">         </password><u></u><u></u></p>

<p class="MsoNormal"><u></u> <u></u></p>

<p class="MsoNormal">Thanks,<u></u><u></u></p>

<p class="MsoNormal">Rod Holman<u></u><u></u></p>

<p class="MsoNormal"><u></u> <u></u></p>

</div>

</div>


_______________________________________________<br>

midPoint mailing list<br>

<a href="mailto:midPoint@lists.evolveum.com" target="_blank">midPoint@lists.evolveum.com</a><br>

<a href="https://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">https://lists.evolveum.com/mailman/listinfo/midpoint</a><br>

</blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr" class="gmail_signature">s pozdravom<div><br></div><div>Gustáv Pálos</div></div></div>