Orchestrator API (with AD)

richarddenton · November 7, 2017, 11:40pm

Hello,

@Florent_Salendres and I are having an issue calling the Orchestrator Authenticate API when Orchestrator is configured with Active Directory.

The documentation does not suggest there should be any difference in the configuration

Username
Password
TenancyName

When configured with a Non-AD account this works fine and an auth token is returned.

RD

andrzej.kniola · November 8, 2017, 3:29pm

Hey Richard,

What error are you getting?
Did you try passing the domain in the request as well? Username should be exactly the same as if you’d be logging in from the website (I know you both know this, but obvious things are sometimes easy to miss).

Florent_Salendres · November 8, 2017, 4:51pm

Hi Andrzej

Error we got is “An error occured” on the http response (Code 500)

Thanks for the input but unfortunately no success so far using both domain\username or domain\email from what was reported to me (i do not have myself access to the environment).

The thing is that when your Orchestrator is installed with domain authentication, you do not need to go to the login page.

From what i remember it was tested to pass also null/empty password

Looking on network traffic while visiting the website and reading json metadata, we can see that username, tenant are fine.

We checked that their roles are sufficient to do so

Can anyone confirm having success authenticating with AD account?
@Ovi ?

Issue is currently encountered on 2017.1

Thank you in advance

cosmin.sandulescu · November 9, 2017, 9:55am

Hello,

You could direct call the needed API (without any previous authentication step) if you are logged in on the machine with the AD user (and the user is imported in orchestrator, has permissions, etc). This solution works by default only with HTTTP request activity from Studio. For other third party tolls, some previous configuration must be done.
Also, it should work also with token, but maybe you should try domain\username instead of domain\username
Try and let me know if any solution worked for you.
Thanks,
Cosmin

Florent_Salendres · November 9, 2017, 4:31pm

I got the feedback that worked out without calling authenticate using HTTP request Activity
I will inform you if I get update on getting token using different input for the user name

Thanks for your help

brunoazev · April 10, 2018, 4:51am

Hi all,

I have the same issue.
Not able to authenticate when using AD Windows login. I tried logging first into Orchestrator and after executing the request for getting Assets from Studio, and the response is “You are not authenticated”.

Any other alternative way?

Topic		Replies	Views
API authentication of On-premises Orchestrator with AD group login Orchestrator orchestrator , question	3	1026	August 6, 2021
How to authenticate orchestrator using API for Domain users Help orchestrator	1	1265	January 2, 2020
How to authenticate orchestrator api using windows credentials Help orchestrator	30	14814	September 7, 2021
Orchestrator Windows authentication issue Help orchestrator	4	3071	February 4, 2020
Enabling REST API access on new 2018 Orchestrator installation Help	3	3467	February 1, 2019

Most Active Users - Yesterday
ashokkarale
MD_Farhan1
Ajay_Mishra
postwick
Dheerendra_vishwakarma
Anil_G
chandreshsinh.jadeja
Gautham_Pattabiraman
vrdabberu
aravindbalineni123
More details...

Orchestrator API (with AD)

Related Topics