RapidIdentity Product Guide: New UI

Alternate Claim Account Action

This alternate action is used to bypass built-in RapidIdentity Portal logic and instead allow an arbitrary RapidIdentity Connect Action Set to provide Claim Account functionality. RapidIdentity Portal performs the necessary authentication/authorization/validation on the request then invokes the pre-defined Action Set on the configured RapidIdentity Connect instance.

After a Claim Account request has been validated, RapidIdentity Portal generates a new random password based on the target account's current Password Policy. This new password will be sent to the RapidIdentity Connect Action Set and it is essential that the Action Set updates the password of the target account with this new password as part of its logic. If this fails to happen, the Claim Account functionality of RapidIdentity Portal will be broken.

Action Set Parameters
Table 324. Parameters

Parameter

Description

target_dn

The DN of the target of the operation (whose profile is being claimed)

perp_ip

The IP address of the perpetrator of the operation (who's performing the operation)

audit_event_id

An audit event ID which may be used to correlate any audit log events from invoked Action Set to the audit log event generated by the call to the RapidIdentity Portal API

newPassword

The randomly generated temporary password that the DSS action should set for the account