managed accounts
Download SpecGet all managed accounts in a target domain
sortkey
string
sortdir
string
- Enum
-
- asc
- desc
limit
int
offset
int
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Get all managed accounts in a target domain
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Response
Success
{
"count": 123,
"items": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
]
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursivecount
int
items
array[object]
object
id
string
uuid
username
string
Username must be unique with a target domain
string
full_name
string
sam_account_name
string
source_id
string
security_id
string
additional_data
object (additional_data)
target_domain
object (target_domain)
id
string
uuid
name
string
deleted
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
enabled
boolean
Managed account enabled/disabled in PrivX
rotation_enabled
boolean
Password rotation enabled/disabled
explicit_checkout
boolean
Explicit checkout of account password allowed/disallowed
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
comment
string
locked
boolean
Account locked in PrivX for ongoing password rotation
locked_timestamp
string
date-time
rotation_history
array[object]
object
version
int
rotated
string
date-time
trigger
string
- Enum
-
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
status
string
- Enum
-
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkouts
array[object]
object
id
string
uuid
type
string
- Enum
-
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_id
string
uuid
expires
string
date-time
created
string
date-time
explicit_checkout
boolean
secrets
array[object]
object
version
int
secret
string
created
string
date-time
username
string
string
full_name
string
target_domain_id
string
uuid
managed_account_id
string
uuid
host_id
string
uuid
secret_name
string
meta
object (meta)
created
string
date-time
author
string
uuid
updated
string
uuid
updated_by
string
date-time
disable_rdp_cert_auth
boolean
disable RDP cert authorization for this user
Create a managed account
id
string
uuid
username
string
Username must be unique with a target domain
string
full_name
string
sam_account_name
string
source_id
string
security_id
string
additional_data
object (additional_data)
target_domain
object (target_domain)
id
string
uuid
name
string
deleted
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
enabled
boolean
Managed account enabled/disabled in PrivX
rotation_enabled
boolean
Password rotation enabled/disabled
explicit_checkout
boolean
Explicit checkout of account password allowed/disallowed
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
comment
string
locked
boolean
Account locked in PrivX for ongoing password rotation
locked_timestamp
string
date-time
rotation_history
array[object]
object
version
int
rotated
string
date-time
trigger
string
- Enum
-
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
status
string
- Enum
-
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkouts
array[object]
object
id
string
uuid
type
string
- Enum
-
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_id
string
uuid
expires
string
date-time
created
string
date-time
explicit_checkout
boolean
secrets
array[object]
object
version
int
secret
string
created
string
date-time
username
string
string
full_name
string
target_domain_id
string
uuid
managed_account_id
string
uuid
host_id
string
uuid
secret_name
string
meta
object (meta)
created
string
date-time
author
string
uuid
updated
string
uuid
updated_by
string
date-time
disable_rdp_cert_auth
boolean
disable RDP cert authorization for this user
password
string
Initial password stored to PrivX vault
rotate
boolean
Trigger initial password rotation after create
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Create a managed account
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true,
"password": "string",
"rotate": true
}
Response
Managed account was successfully created
{
"id": "5bf77342-221c-11ee-be56-0242ac120002"
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
id
string
uuid
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveSearch managed accounts in a target domain
keywords
string
Space or comma separated list of search keywords
enabled
boolean
created_after
string
date-time
created_before
string
date-time
updated_after
string
date-time
updated_before
string
date-time
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
rotation_enabled
boolean
explicit_checkout
boolean
targetDomainID
string
uuid
required
sortkey
string
sortdir
string
- Enum
-
- asc
- desc
limit
int
offset
int
oauth
Required Scopes:
admin
Search managed accounts in a target domain
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"keywords": "string",
"enabled": true,
"created_after": "2023-06-07T17:32:28Z",
"created_before": "2023-06-07T17:32:28Z",
"updated_after": "2023-06-07T17:32:28Z",
"updated_before": "2023-06-07T17:32:28Z",
"state": "MANAGED",
"rotation_enabled": true,
"explicit_checkout": true
}
Response
Success
{
"count": 123,
"items": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
]
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursivecount
int
items
array[object]
object
id
string
uuid
username
string
Username must be unique with a target domain
string
full_name
string
sam_account_name
string
source_id
string
security_id
string
additional_data
object (additional_data)
target_domain
object (target_domain)
id
string
uuid
name
string
deleted
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
enabled
boolean
Managed account enabled/disabled in PrivX
rotation_enabled
boolean
Password rotation enabled/disabled
explicit_checkout
boolean
Explicit checkout of account password allowed/disallowed
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
comment
string
locked
boolean
Account locked in PrivX for ongoing password rotation
locked_timestamp
string
date-time
rotation_history
array[object]
object
version
int
rotated
string
date-time
trigger
string
- Enum
-
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
status
string
- Enum
-
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkouts
array[object]
object
id
string
uuid
type
string
- Enum
-
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_id
string
uuid
expires
string
date-time
created
string
date-time
explicit_checkout
boolean
secrets
array[object]
object
version
int
secret
string
created
string
date-time
username
string
string
full_name
string
target_domain_id
string
uuid
managed_account_id
string
uuid
host_id
string
uuid
secret_name
string
meta
object (meta)
created
string
date-time
author
string
uuid
updated
string
uuid
updated_by
string
date-time
disable_rdp_cert_auth
boolean
disable RDP cert authorization for this user
Get managed account
targetDomainID
string
uuid
required
managedAccountID
string
uuid
required
oauth
Required Scopes:
admin
Get managed account
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Response
Success
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveid
string
uuid
username
string
Username must be unique with a target domain
string
full_name
string
sam_account_name
string
source_id
string
security_id
string
additional_data
object (additional_data)
target_domain
object (target_domain)
id
string
uuid
name
string
deleted
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
enabled
boolean
Managed account enabled/disabled in PrivX
rotation_enabled
boolean
Password rotation enabled/disabled
explicit_checkout
boolean
Explicit checkout of account password allowed/disallowed
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
comment
string
locked
boolean
Account locked in PrivX for ongoing password rotation
locked_timestamp
string
date-time
rotation_history
array[object]
object
version
int
rotated
string
date-time
trigger
string
- Enum
-
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
status
string
- Enum
-
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkouts
array[object]
object
id
string
uuid
type
string
- Enum
-
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_id
string
uuid
expires
string
date-time
created
string
date-time
explicit_checkout
boolean
secrets
array[object]
object
version
int
secret
string
created
string
date-time
username
string
string
full_name
string
target_domain_id
string
uuid
managed_account_id
string
uuid
host_id
string
uuid
secret_name
string
meta
object (meta)
created
string
date-time
author
string
uuid
updated
string
uuid
updated_by
string
date-time
disable_rdp_cert_auth
boolean
disable RDP cert authorization for this user
Modify a managed account
id
string
uuid
username
string
Username must be unique with a target domain
string
full_name
string
sam_account_name
string
source_id
string
security_id
string
additional_data
object (additional_data)
target_domain
object (target_domain)
id
string
uuid
name
string
deleted
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
enabled
boolean
Managed account enabled/disabled in PrivX
rotation_enabled
boolean
Password rotation enabled/disabled
explicit_checkout
boolean
Explicit checkout of account password allowed/disallowed
state
string
- Enum
-
- MANAGED
- UNMANAGED
- NEW
- REMOVED
comment
string
locked
boolean
Account locked in PrivX for ongoing password rotation
locked_timestamp
string
date-time
rotation_history
array[object]
object
version
int
rotated
string
date-time
trigger
string
- Enum
-
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
status
string
- Enum
-
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkouts
array[object]
object
id
string
uuid
type
string
- Enum
-
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_id
string
uuid
expires
string
date-time
created
string
date-time
explicit_checkout
boolean
secrets
array[object]
object
version
int
secret
string
created
string
date-time
username
string
string
full_name
string
target_domain_id
string
uuid
managed_account_id
string
uuid
host_id
string
uuid
secret_name
string
meta
object (meta)
created
string
date-time
author
string
uuid
updated
string
uuid
updated_by
string
date-time
disable_rdp_cert_auth
boolean
disable RDP cert authorization for this user
targetDomainID
string
uuid
required
managedAccountID
string
uuid
required
oauth
Required Scopes:
admin
Modify a managed account
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
Response
Managed account was successfully modified
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveDelete a managed account
targetDomainID
string
uuid
required
managedAccountID
string
uuid
required
oauth
Required Scopes:
admin
Delete a managed account
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Response
Managed account was successfully deleted
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveTrigger managed account password rotation
targetDomainID
string
uuid
required
managedAccountID
string
uuid
required
oauth
Required Scopes:
admin
Trigger managed account password rotation
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Response
Managed account password rotation was successfully triggered
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveProvide password for managed account
password
string
targetDomainID
string
uuid
required
managedAccountID
string
uuid
required
oauth
Required Scopes:
admin
Provide password for managed account
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"password": "string"
}
Response
Password was stored as new managed account secret version
{
"version": 123,
"created": "2023-06-07T17:32:28Z"
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
version
int
created
string
date-time
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveCreate a batch of managed accounts
ids
array[string]
string
uuid
Target domain account IDs
data
object (data)
enabled
boolean
rotation_enabled
boolean
rotate
boolean
Trigger initial password rotation after create
explicit_checkout
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
comment
string
disable_rdp_cert_auth
boolean
disable RDP cert auth for the users
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Create a batch of managed accounts
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
],
"data": {
"enabled": true,
"rotation_enabled": true,
"rotate": true,
"explicit_checkout": true,
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"comment": "string",
"disable_rdp_cert_auth": true
}
}
Response
Managed account batch was successfully created
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveids
array[string]
string
uuid
Target domain managed account IDs
Modify a batch of managed accounts
ids
array[string]
string
uuid
Target domain managed account IDs
changes
object (changes)
enabled
boolean
rotation_enabled
boolean
explicit_checkout
boolean
password_policy
object (password_policy)
id
string
uuid
name
string
comment
string
disable_rdp_cert_auth
boolean
disable RDP cert auth for the users
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Modify a batch of managed accounts
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
],
"changes": {
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"comment": "string",
"disable_rdp_cert_auth": true
}
}
Response
Managed account batch was successfully modified
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveDelete a batch of managed accounts
ids
array[string]
string
uuid
Target domain managed account IDs
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Delete a batch of managed accounts
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}
Response
Managed account batch was successfully deleted
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveTrigger password rotation for a batch of managed accounts
ids
array[string]
string
uuid
Target domain managed account IDs
targetDomainID
string
uuid
required
oauth
Required Scopes:
admin
Trigger password rotation for a batch of managed accounts
All Scopes
-
admin
· Admin scope - used for built-in PrivX admin account -
hostsManage
· Clients with hosts-manage scope -
hostsProvisioning
· Deploy script users -
hostsView
· Clients with hosts-view scope -
service
· Microservice scope - used for communication between PrivX microservices -
user
· Normal users
- Flow Type:
- authorization_code
- Auth URL:
- https://api.x.com/v1/auth/auth
- Token URL:
- https://api.x.com/v1/auth/auth
Request
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}
Response
Rotation was successfully triggered for a managed account batch
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
Empty response
No schema
Error
{
"error_code": "GENERAL_ERROR",
"error_message": "string",
"property": "string",
"details": [
null
]
}
error_code
string
required
Standard error code denoting the error type
- Enum
-
- GENERAL_ERROR
- BAD_REQUEST
- PERMISSION_DENIED
- INVALID_REQUEST_DATA
- REQUIRED_VALUE_MISSING
- VALUE_OUT_OF_BOUNDS
- VALUE_INCORRECT_TYPE
- VALUE_INCORRECT_FORMAT
- VALUE_DUPLICATE
- CONFIGURATION_ERROR
- OUT_OF_RESOURCES
- MAX_LOAD
- TOO_MANY_CONNECTIONS
- DATABASE_ERROR
- CACHE_ERROR
- INTRA_SERVICE_COMMUNICATION_ERROR
error_message
string
Textual, human readable error message
property
string
The property name causing the error
details
array[]
An array of errors describing the error in more detail
reference (error)
recursiveWas this page helpful?