This is not the latest version of Identity Director documentation.
View available documentation.

Configure password service attributes

In the Management Portal at Entitlement Catalog, on the Attributes tab of the service page, configure password attributes to store a password. This allows actors in a service transaction to specify a password when requested.

Configuration

Field	Explanation and Tips
Value and Confirm Password	Specify a default value. Passwords are seen as restricted information by default and are always masked with the icon , irrespective of the permissions of your administrative role. At Transactions, restricted attributes are shown as [attributename]. Although you cannot see the attribute value, this still allows you to verify if the context or definition of the attribute is correct. The value is limited to 2000 characters. Because passwords are encrypted, the clear-text value of a password can have a maximum of 743 characters in order for its encrypted form to fit the 2000 character limit.

Field

Explanation and Tips

Value and Confirm Password

Specify a default value.

Passwords are seen as restricted information by default and are always masked with the icon , irrespective of the permissions of your administrative role. At Transactions, restricted attributes are shown as [attributename]. Although you cannot see the attribute value, this still allows you to verify if the context or definition of the attribute is correct.
The value is limited to 2000 characters. Because passwords are encrypted, the clear-text value of a password can have a maximum of 743 characters in order for its encrypted form to fit the 2000 character limit.

You can force mandatory input by enabling Attribute may not be empty after workflow input from actor.
In an Invoke Run Book action, you can map password service attributes to corresponding password parameters. This allows you to create secure scenarios in which a user or a manager can request a password change for a login account via a Run Book.
When you duplicate a service that contains a password service attribute, its value is not duplicated.

Placeholders

When you insert password service attribute as a placeholder in actions, use the following options to retrieve its values:

Placeholder	Explanation
#Service[{attributename}.Encrypted]	Resolve to the encrypted value of the attribute. In the Management Portal and Web Portal, the password is masked and shown as [attributename]. Use this placeholder e.g. in an Invoke Run Book action to provide the encrypted password to Ivanti Automation Run Books.
#Service[{attributename}.Description]	Resolve to the description of the attribute, e.g. "This is the domain password".
#Service[{attributename}.ClearText]	Resolve to the clear text value of the attribute, e.g. "1234DomainPassword".