managed accounts
get
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccountsGet all managed accounts in a target domain
sortkeystringsortdirstring- Enum
- asc
- desc
limitintoffsetintResponses
Response examples
Success
{
"count": 123,
"items": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
]
}post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccountsCreate a managed account
idstring- Format
- uuid
usernamestringUsername must be unique with a target domain
emailstringfull_namestringsam_account_namestringsource_idstringsecurity_idstringadditional_dataobjecttarget_domainobject (targetdomain_handle)idstring- Format
- uuid
namestringdeletedbooleanpassword_policyobject (policy_handle)idstring- Format
- uuid
namestringenabledbooleanManaged account enabled/disabled in PrivX
rotation_enabledbooleanPassword rotation enabled/disabled
explicit_checkoutbooleanExplicit checkout of account password allowed/disallowed
statestring- Enum
- MANAGED
- UNMANAGED
- NEW
- REMOVED
commentstringlockedbooleanAccount locked in PrivX for ongoing password rotation
locked_timestampstring- Format
- date-time
rotation_historyarrayversionintrotatedstring- Format
- date-time
triggerstring- Enum
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
statusstring- Enum
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkoutsarrayidstring- Format
- uuid
typestring- Enum
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_idstring- Format
- uuid
expiresstring- Format
- date-time
createdstring- Format
- date-time
explicit_checkoutbooleansecretsarrayusernamestringemailstringfull_namestringtarget_domain_idstring- Format
- uuid
managed_account_idstring- Format
- uuid
host_idstring- Format
- uuid
secret_namestringmetaobjectcreatedstring- Format
- date-time
authorstring- Format
- uuid
updatedstring- Format
- uuid
updated_bystring- Format
- date-time
disable_rdp_cert_authbooleandisable RDP cert authorization for this user
passwordstringInitial password stored to PrivX vault
rotatebooleanTrigger initial password rotation after create
Responses
Request examples
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true,
"password": "string",
"rotate": true
}Response examples
Managed account was successfully created
{
"id": "5bf77342-221c-11ee-be56-0242ac120002"
}post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/searchSearch managed accounts in a target domain
keywordsstringSpace or comma separated list of search keywords
enabledbooleancreated_afterstring- Format
- date-time
created_beforestring- Format
- date-time
updated_afterstring- Format
- date-time
updated_beforestring- Format
- date-time
statestring- Enum
- MANAGED
- UNMANAGED
- NEW
- REMOVED
rotation_enabledbooleanexplicit_checkoutbooleanResponses
Request examples
{
"keywords": "string",
"enabled": true,
"created_after": "2023-06-07T17:32:28Z",
"created_before": "2023-06-07T17:32:28Z",
"updated_after": "2023-06-07T17:32:28Z",
"updated_before": "2023-06-07T17:32:28Z",
"state": "MANAGED",
"rotation_enabled": true,
"explicit_checkout": true
}Response examples
Success
{
"count": 123,
"items": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}
]
}get
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/{managedAccountID}Get managed account
targetDomainIDstringrequired
- Format
- uuid
managedAccountIDstringrequired
- Format
- uuid
Responses
Response examples
Success
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}put
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/{managedAccountID}Modify a managed account
idstring- Format
- uuid
usernamestringUsername must be unique with a target domain
emailstringfull_namestringsam_account_namestringsource_idstringsecurity_idstringadditional_dataobjecttarget_domainobject (targetdomain_handle)idstring- Format
- uuid
namestringdeletedbooleanpassword_policyobject (policy_handle)idstring- Format
- uuid
namestringenabledbooleanManaged account enabled/disabled in PrivX
rotation_enabledbooleanPassword rotation enabled/disabled
explicit_checkoutbooleanExplicit checkout of account password allowed/disallowed
statestring- Enum
- MANAGED
- UNMANAGED
- NEW
- REMOVED
commentstringlockedbooleanAccount locked in PrivX for ongoing password rotation
locked_timestampstring- Format
- date-time
rotation_historyarrayversionintrotatedstring- Format
- date-time
triggerstring- Enum
- ONRELEASE
- ONEXPIRY
- PERIODIC
- MANUAL
statusstring- Enum
- SUCCESS
- ERROR
- MAX_ROTATION_RETRIES_ERROR
checkoutsarrayidstring- Format
- uuid
typestring- Enum
- TARGET_DOMAIN_SECRET
- HOST_SECRET
user_idstring- Format
- uuid
expiresstring- Format
- date-time
createdstring- Format
- date-time
explicit_checkoutbooleansecretsarrayusernamestringemailstringfull_namestringtarget_domain_idstring- Format
- uuid
managed_account_idstring- Format
- uuid
host_idstring- Format
- uuid
secret_namestringmetaobjectcreatedstring- Format
- date-time
authorstring- Format
- uuid
updatedstring- Format
- uuid
updated_bystring- Format
- date-time
disable_rdp_cert_authbooleandisable RDP cert authorization for this user
Responses
Request examples
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"username": "string",
"email": "string",
"full_name": "string",
"sam_account_name": "string",
"source_id": "string",
"security_id": "string",
"additional_data": {},
"target_domain": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string",
"deleted": true
},
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"state": "MANAGED",
"comment": "string",
"locked": true,
"locked_timestamp": "2023-06-07T17:32:28Z",
"rotation_history": [
{
"version": 123,
"rotated": "2023-06-07T17:32:28Z",
"trigger": "ONRELEASE",
"status": "SUCCESS"
}
],
"checkouts": [
{
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"type": "TARGET_DOMAIN_SECRET",
"user_id": "5bf77342-221c-11ee-be56-0242ac120002",
"expires": "2023-06-07T17:32:28Z",
"created": "2023-06-07T17:32:28Z",
"explicit_checkout": true,
"secrets": [
{
"version": 123,
"secret": "string",
"created": "2023-06-07T17:32:28Z"
}
],
"username": "string",
"email": "string",
"full_name": "string",
"target_domain_id": "5bf77342-221c-11ee-be56-0242ac120002",
"managed_account_id": "5bf77342-221c-11ee-be56-0242ac120002",
"host_id": "5bf77342-221c-11ee-be56-0242ac120002",
"secret_name": "string",
"meta": {}
}
],
"created": "2023-06-07T17:32:28Z",
"author": "5bf77342-221c-11ee-be56-0242ac120002",
"updated": "5bf77342-221c-11ee-be56-0242ac120002",
"updated_by": "2023-06-07T17:32:28Z",
"disable_rdp_cert_auth": true
}Response examples
Managed account was successfully modified
Empty response
delete
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/{managedAccountID}Delete a managed account
targetDomainIDstringrequired
- Format
- uuid
managedAccountIDstringrequired
- Format
- uuid
Responses
Response examples
Managed account was successfully deleted
Empty response
post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/{managedAccountID}/rotateTrigger managed account password rotation
targetDomainIDstringrequired
- Format
- uuid
managedAccountIDstringrequired
- Format
- uuid
Responses
Response examples
Managed account password rotation was successfully triggered
Empty response
post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/{managedAccountID}/passwordProvide password for managed account
passwordstringResponses
Request examples
{
"password": "string"
}Response examples
Password was stored as new managed account secret version
{
"version": 123,
"created": "2023-06-07T17:32:28Z"
}post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/batch/createCreate a batch of managed accounts
idsarraydataobjectenabledbooleanrotation_enabledbooleanrotatebooleanTrigger initial password rotation after create
explicit_checkoutbooleanpassword_policyobject (policy_handle)commentstringdisable_rdp_cert_authbooleandisable RDP cert auth for the users
Responses
Request examples
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
],
"data": {
"enabled": true,
"rotation_enabled": true,
"rotate": true,
"explicit_checkout": true,
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"comment": "string",
"disable_rdp_cert_auth": true
}
}Response examples
Managed account batch was successfully created
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/batch/editModify a batch of managed accounts
idsarraychangesobjectenabledbooleanrotation_enabledbooleanexplicit_checkoutbooleanpassword_policyobject (policy_handle)commentstringdisable_rdp_cert_authbooleandisable RDP cert auth for the users
Responses
Request examples
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
],
"changes": {
"enabled": true,
"rotation_enabled": true,
"explicit_checkout": true,
"password_policy": {
"id": "5bf77342-221c-11ee-be56-0242ac120002",
"name": "string"
},
"comment": "string",
"disable_rdp_cert_auth": true
}
}Response examples
Managed account batch was successfully modified
Empty response
post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/batch/deleteDelete a batch of managed accounts
idsarrayResponses
Request examples
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}Response examples
Managed account batch was successfully deleted
Empty response
post
/secrets-manager/api/v1/targetdomains/{targetDomainID}/managedaccounts/batch/rotateTrigger password rotation for a batch of managed accounts
idsarrayResponses
Request examples
{
"ids": [
"5bf77342-221c-11ee-be56-0242ac120002"
]
}Response examples
Rotation was successfully triggered for a managed account batch
Empty response
Was this page helpful?