Cloud Administration Synchronize User API

Document created by RSA Information Design and Development on Jan 18, 2019Last modified by RSA Information Design and Development on May 17, 2019
Version 6Show Document
  • View in full screen mode

Use the Cloud Administration Synchronize User API to synchronize the details of a single user between an identity source and the Cloud Authentication Service.

Authentication

Clients calling this API to synchronize a user must authenticate themselves by including a JSON Web Token in a request. For instructions on using this token, see Authentication for the Cloud Administration APIs .

Administrative Roles

This API can use an API Key that is associated with either the Super Administrator or Help Desk Administrator role. For more information, see Manage the Cloud Administration API Keys.

Software Developer Kit

You can download the API Software Developer Kit (SDK) from Cloud Administration REST API Download.

Request Requirements

Use the following information to synchronize information about a particular user.

                        
MethodRequest URLResponse Content TypeResponse BodyResponse Codes
POST /AdminInterface/restapi/v1/users/<userId>/sync application/jsonUser details with property200, 400, 403, 404, 500

Resource Identifier

Use the following resource identifier.

               
Request ParameterDescription
<userId>Unique user identifier sent in the response to the Cloud Administration User Details API .

Request Body

Request body is empty. Set Content-Length to zero when calling this resource.

Example Request Data

The following example displays a request to synchronize a user.

POST https://localhost/AdminInterface/restapi/v1/users/eb2e12ae-1112-451b-98e1-dfe4e6afd60d/sync

Content-Length: 0

Authorization: Bearer <JWT token>

Response

When the request succeeds, the response body contains user details with updated user information.

Example Response Body

The following example displays a response body.

{

"id": "f85b6e95-f41f-45b4-bc84-559fead6460c",

"emailAddress": "user.one@mycompany.com",

"firstName": "User",

"lastName": "One",

"creationDate": "2018-08-31T19:10:30.045Z",

"identitySource": "My Company AD",

"userStatus": "Enabled",

"markDeleted": false,

"highRiskUser": false,

"markDeletedAt": null,

"markDeletedBy": null,

"smsNumber": "+11235556799",

"voiceNumber": "+1 774 291 4444",

"isTokenLocked": false,

"isSmsLocked": false,

"isVoiceLocked": false,

"lastSyncTime": "2018-08-31T19:20:30.045Z"

}

Property Response Descriptions

The following table describes properties used in the response.

                                                                                                  
PropertyDescriptionData Type
idIdentifies the user.String
emailAddressUser's email address.String
firstNameUser's first name.String
lastNameUser's last name.String
creationDateDate when the user account was added to the Cloud Authentication Service.
See https://www.w3.org/TR/NOTE-datetime
for information on formatting timestamps in ISO 8601 format.
String
identitySourceName of identity source.String
userStatus

Enabled. Users can access protected resources.

Disabled. Users cannot access protected resources or register devices.

String
markDeletedIndicates whether the user is marked deleted.Boolean
markDeletedAt

Date when a user is marked deleted.
See https://www.w3.org/TR/NOTE-datetime

for information on formatting timestamps in ISO 8601 format.
String
markDeletedByAdministrator who initiated mark for delete. String
smsNumberDisplays user SMS phone numbers after you click Show synchronized phone numbers. Phone numbers appear only if corresponding attributes were configured and synchronized. String
voiceNumberDisplays user voice phone numbers after you click Show synchronized phone numbers. Phone numbers appear only if corresponding attributes were configured and synchronized.String
isTokenLockedTokencode status is either true (locked) or false (unlocked).Boolean
isSmsLockedSMS Tokencode status is either true (locked) or false (unlocked).Boolean
isVoiceLocked

Voice Tokencode status is either true (locked) or false (unlocked).

Boolean
lastSyncTime

Most recent time when user details were synchronized with an identity source.
See https://www.w3.org/TR/NOTE-datetime

for information on formatting timestamps in ISO 8601 format.
String
highRiskUser

True indicates the user is marked as high risk by an external third-party application. False indicates the user is not marked as high risk by an external third-party application.

Boolean

Response Codes

The following table shows response codes and descriptions for this API.

                               
CodeDescription
200

Successfully synchronized user.

Note:  This response creates an administration log event.

400Operation not performed because of client syntax errors.
403Not authorized to perform the request.
404

User is not found by the Cloud Authentication Service.

Note:  This response creates an administration log event.

500

Internal error occurred when processing the request.

Note:  This response creates an administration log event.

 

 

You are here
Table of Contents > Cloud Administration APIs > Cloud Administration Synchronize User API

Attachments

    Outcomes