Follow

AuthAnvil Password Server APIs

Developer Center - Scorpion Software

­

The AuthAnvil Password Server service may be found at the endpoint: AAPS/AAPS.svc

Download and Store Certificate

From the External Settings page of the AuthAnvil Password Server, you can generate and download Certificates that will be recognized by the AuthAnvil Password Server, allowing access to the web service, including the Guid access methods.

Storage and management of these certificates on the client side will be up to you. On the server side, they are stored in the database, just like the other certificates used to secure communication with the web service.

Logon2

This method authenticates a user to the AuthAnvil Password Server with either static password or AuthAnvil 2FA Passcode, and returns a SessionKey used to access other methods for the duration of the session.
AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Authenticates a user with either a static password or an AuthAnvil 2FA Passcode, depending on the user's configuration.
string sessionKey = aapsProxy.Logon2(out message, userEmailAddress, OrgID, password);

 

SSOLogon

This method authenticates a user to the AuthAnvil Password Server with a SAML Assertion, and returns a SessionKey used to access other methods for the duration of the session.
AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Authenticates a user with a SAML Assertion. relayState will point back to the IDP Login page on success.
string sessionKey = aapsProxy.SSOLogon(out relayState, SAMLAssertionXMLString);

 

dtLogin

This method authenticates a user to the AuthAnvil Password Server using delegated trust. By connecting with a special certificate from a designated machine, you can log in without presenting a password. It is extremely important that the delegated trust certificate is kept secure on the machine it is intended for. Delegated Trust certificates can be created by Administrators within AuthAnvil Password Server.

The Delegated Trust Certificate should have a subject of “CN=[hostname]”, for the machine it is intended for.

The session key returned is encrypted using the Delegated Trust Certificate, and will need to be decrypted before use.

AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Authenticates a user with delegated trust.
string sessionKeyCipher = aapsProxy.dtLogon(out message, userEmailAddress, dtCertThumbprint);

 

GetPasswordListGuid

This method gets a list of basic password information and associated Guid values for all Third-party enabled passwords the current user can access.
AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Gets a list of Third Party enabled passwords the user can see.
//Session is true if session validation succeeds, otherwise it is false.
List<ThirdPartyPasswordRecord> passwordGuidList = aapsProxy.GetPasswordListGuid(out message, out session,
sessionKey, ThirdPartyCertificateRecord.Thumbprint);

//View the guid for a given password.
Guid passwordGuid = passwordGuidList[0].passwordGuid;


GetPasswordGuid

This method returns a detailed Password Record with a cleartext password, found by looking up the password by its Guid value.

AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Get a full detailed password record, based on a known Guid value.
ThirdPartyAccessRecord passwordRecord = aapsProxy.GetPasswordGuid(out message, out session, 
sessionKey, ThirdPartyCertificate.Thumbprint, passwordGuid);

string password = passwordRecord.password;

 

GetPrivatePasswordGuid

This method returns a detailed Private Password Record with a cleartext password, found by looking up the password by its Guid value, and decrypted with the Private Vault key.
AAPSServiceClient aapsProxy = new AAPSServiceClient();

aapsProxy.ClientCredentials.ClientCertificate.Certificate = ThirdPartyCertificate;

//Get a full detailed private password record, based on a known Guid value, and decrypted with the privateVaultKey.
ThirdPartyAccessRecord privatePasswordRecord = aapsProxy.GetPrivatePasswordGuid(out message, out session,
sessionKey, ThirdPartyCertificate.Thumbprint, passwordGuid, privateVaultKey);

string privatePassword = privatePasswordRecord.password;

 

 

Additional Methods

The web service exposes the following memebers in addition to the above:

 

Echo

This method echos an entered string value, to test service contectivty.

 

EchoEncrypted

This method echoes an entered value, but uses the full message encryption scheme of the Service, to test the client certificate.

 

EncryptedSSOLogon

This method allows for a normal SSO SAML Logon, using a specified IP Address, which returns an encrpted record containing the Session Key.

 

ProcessEncryptedLogon

This method process an EncryptedRecord object (see above), and returns the string value.

 

GetOrgList

This method gets the list of currently enabled Organizations.

 

GetDisabledOrgList

This method gets a list of disabled Organizations.

 

ValidateSessionKey

This method validates a session key. All other session methods validate the key as part of their internal logic, but this can be used for a manual check.

 

Logout

This method logs out the user, ending their session.

 

IsOrgLocked

This method checks to see if the user’s Organization is in a locked state. Only an Organization Administrator can manage an Organizaion in lockdown.

 

GetAuditGap

This method gets a report of missing Audit Logs, which may be causing the Organization to lock.

 

InsertMissingRecord

This method allows an Administrator to insert a placeholder log to repair the broken Audit Table.

 

ManualAuditSequenceCheck

This method can be used to perform a manual check against the integrity of the Audit logs.

 

CancelLockdown

This method allows an Administrator to lift a lockdown after the cause has been corrected.

 

GetTamperReport

This method allows an Administrator to check for Audit logs that have been tampered with.

 

CopyAuditHash

This method allows an Administrator to approve a modified Audit log.

 

ManualAuditHashCheck

This method allows an Administrator to manually perform the Tamper check run by the scheduler.

 

GetUserList

This method returns a list of users in the current users Organization.

 

GetUserListFiltered

This method also returns a list of users in the current Organization. It gives more options for sorting, filtering, and returning results in paged amounts. The output parameter, total, will report the total number of matching records found.

 

GetUserListFilteredRole

The same as GetUserListFiltered, but you also specify a specific role, to which any returned user will belong.

 

GetDeletedUserList

This method returns a list of deleted Users, preserved for Auditing purposes.

 

GetCompleteUserList

This method returns a joined list of current and deleted Users.

 

GetUserRecord

This method returns a detailed record on a single User.

 

GetUserScopes

This method returns a list of Scope IDs associted with a User.

 

SubmitUserUpdate

This method allows an Administrator to update a User record.

 

ModifyUserScopes

This method allows an Administrator to modify a User’s scopes.

 

InsertNewUser

This method allows an Administrator to create a new User.

 

DeleteUser

This method allows an Administrator to delete a User.

 

GetScopeUsers

This method returns a list of Users in the specified Scope.

 

GetUserFromSessionKey

This method gets the User ID from the session key.

 

IsUserAdmin

This method checks to see if the current user is an Administrator.

 

GetOwnedVaultIDs

This method gets the IDs of the Vaults the user Owns.

 

UpdateUserPassword

This method allows a User to update their own Password.

 

UserIsOwnerAdmin

This method checks to see if the user is either a Vault Owner or an Administrator.

 

GetVaultList

This method gets a list of Vaults in a specified Scope.

 

GetFilteredVaultList

This method also returns a list of Vaults in a specified Scope, but allows for finer control. You can specify a sort order, a search filter on Name and Description, as well as how many records to return. No matter how many are returned, the output parameter, total, will report how many the search parameters found altogether.

 

GetVaultListAuditOrOwn

This method gets a list of Vaults the the User either owns, or has Audit permissions to.

 

AllowedToSeeVault

This method checks to see if a User is allowed to see a specified Vault.

 

SubmitNewVault

This method allows a User to create a new Vault as the Owner.

 

GetVaultData

This method allows a User to get detailed information on a Vault.

 

GetVaultUserRecordList

This method gets a list of the Users assigned to a Vault, with their associate permissions.

 

SubmitVaultUpdate

This method allows a User to update a Vault.

 

SubmitVaultMemberUpdate

This method allows for updating the Users assigned to a vault.

 

IsUserVaultOwner

This method checks to see if the User is the Vault owner for a given vault.

 

IsUserVaultMember

This method check to see if the USer is a member of the specified Vault.

 

DeleteVault

This method allows an Owner to delete a Vault.

 

RekeyVault

This method allows an Owner to rotate the Vault’s Encryption key.

 

RequestVaultMembership

This method allows a User to request membership to a Vault by sending an email to the Owners.

 

Seizevault

This method allows an Administrator to grant themselves ownership of a Vault, alerting all members.

 

ExportVault

This method allows a User to export the Vault and its Passwords to a CSV string value.

 

GetVaultUserRecord

This method gets the specific Vault Membership for the current user in a specified Vault.

 

GetSettingsData

This method allows a User to access the Organization settings.

 

SubmitSettingsData

This method allows an Administrator to update the Organization settings.

 

UpdateLicensingSettings

This method allows an Administrator of Org 1 to update the Licensing settings.

 

UserAllowedCreateVaults

This method checks to see if the current User can create Vaults.

 

TestMailSettings

This method tests the currently saved mail settings with a test email.

 

TestAuthAnvilSettings

This method tests the AuthAnvil 2FA Settings.

 

GetDefaultVaultPolicy

This method gets the Organization level default policy for a new Vault.

 

AllowVaultExport

This method checks to see if the Organization settings allow for Vault export.

 

GetLockoutDuration

This method gets the Organization settings for Lockout Duration.

 

IsHistoryShown

This method gets the Organization setting on whether or now to allow Password History to be shown.

 

GetSSOSettings

This method gets the Organizations SSO Settings.

 

GetDefaultSSOSettings

This method gets the Default SSO Settings for a specified Org.

 

GetScopeList

This method gets a list of Scopes for a specified Org.

 

GetFilteredScopeList

This method also returns a list of Scopes for your Org. It provides more search options, allows sorting, and returning subsets of results of paging. The output parameter, total, will inform you of how many total records were matched by the filters.

 

GetFilteredScopeListPerms

The same as GetFilteredScopeList, but the results are limited to only the Scopes the current user can actually access.

 

SubmitScope

This method allows an Administrator to create a new Scope.

 

DeleteScope

This method allows an Administrator to delete a Scope.

 

GetScopeListForUser

This method gets a list of Scopes for the current User.

 

GetScopeRecordByID

This method gets detailed information on a given Scope.

 

GetPersonalScope

This returns the Organization’s Personal Scope data, to be used in creating Personal Vaults.

 

GetFilteredScopeListAssociation

The same as GetFilteredScopeList, but the results are limited to the Scopes tied to the selected Association.

 

GetFilteredScopeListRole

The same as GetFilteredScopeList, but the results are limited to the Scopes tied to the selected Role.

 

InsertNewPassword

This allows a Vault Member with Create privilages to add a new Password to a Vault.

 

GetPasswordList

This method gets a list of Password in a given Vault.

 

GetPasswordListFiltered

The same as GetPasswordList, but with options for sorting, search filtering, and results returns in batches for paging.

 

GetPassword

This method reveals a Password to a User with Read permissions.

 

GetPasswordForSSO

The same as GetPassword, but the method validates the ceritificate specifically for being the valid SSO cert before returning data.

 

GetPasswordName

This method gets the name of a Password.

 

GetvaultPolicy

This method gets the Password Policy for a given Vault.

 

GetPasswordRecordByID

This method gets a detailed Password Record for a given PasswordID, without the actual password.

 

UpdatePasswordRecord

This method allows a Vault Member with Modify permissions to update a Password Record.

 

UpdatePassword

This method allows a Vault Member with Modify permissiosn to update the actual Password.

 

DeletePassword

This method allows a Vault Member with Modify permissions to delete a password.

 

AllowPrivateVaults

This method checks to see if Private Vaults are permitted.

 

GetPasswordHistory

This method gets the Password History for a given password.

 

IsHistoryEnforced

This method checks to see if History is check for validating password updates.

 

IsHistorySaved

This method checks to see if Password History is saved.

 

IsUserVaultPermissionCreate

This method checks to see if the User has permissions to create Passwords.

 

IsUserVaultPermissionModify

This method checks to see if the User has permissions to modify Passwords.

 

ExpireAllKnownPassowrdsByUser

This method allows an Administrator to expire all passwords that a given User knows.

 

GetPasswordTypeList

This method gets the list of valid Password Types supported by the AuthAnvil Password Server.

 

ReviewPasswordImport

This method allows a User to test the string data of a CSV file for a Password Import.

 

ConfirmPasswordImport

This method allows a User to import a series of Passwords from a processes CSV file.

 

AddFavorite

This method allows you to add a Password you can see to your Favorite list, for easy access.

 

RemoveFavoritePassword

This method allows you to remove a Password from your Favorite list.

 

RemoveAllFavoritePasswords

This method removes all Passwords from your Favorite list.

 

ViewFavoritePasswordList

This method returns the Passwords in your Favorite list.

 

SortFavoritePasswords

This method accepts an ordered list of Password IDs, which must contain all IDs of your Favorite Passwords. The order of the list is used to sort your Favorites into that order.

 

SearchTotal

This method brings back all Password records the user can access, to allow for more complex sorting/searching to be done client side.

 

SearchFiltered

This method bring back all Password records the user can access, limited by a string filter on Name and Description.

 

SearchFilteredRanged

The same as SearchFiltered, but with sorting and paging options for better UI control.

 

RetrySync

This method allows your to recreate the Test Sync instruction for a Password, as a first attempt to correct a Sync Error.

 

ReportTop10PasswordsAccessed

This method allows an Administrator or Vault Owner to get a report on the top 10 most accessed Passwords.

 

ReportLast10PasswordsAccessed

This method allows an Administrator or Vault Owner to get a report on the last 10 Passwords accessed.

 

ReportTop10Users

This method allows an Administrator to get a report on the top 10 most active Users.

 

ReportUsersPasswordsCanSee

This method allows an Administrator or Vault Owner to get a report on what Passwords a User has permissions to.

 

ReportUsersPasswordsHasSeen

This method allows an Administrator or Vault Owner to get a report on what Passwords a User has ever revealed.

 

ReportUsersPasswordsStillKnows

This method allows an Administrator or Vault Owner to get a report on what Passwords haven’t changed since a User last saw them.

 

ReportUsersActivity

This method allows an Administrator to get a report on the general activity of a User.

 

ReportVaultsVaultPermissions

This method allows an Administrator or Vault Owner to get a report on the Vault Membership permissions for a Vault.

 

ReportvaultsExportedRecently

This method allows an Administrator or Vault Owner to get a report on Vaults that have been exported recently.

 

ReportVaultsCreatedRecently

This method allows an Administrator to get a report on Vaults the have been created recently.

 

ReportVaultSettingsChanged

This method allows an Administrator or Vault Owner to get a report on Vaults where settings have been changed.

 

ReportPasswordsAccessed

This method allows an Administrator or Vault Owner to get a report on what Passwords have been accessed.

 

ReportPasswordsSoonToExpire

This method allows an Administrator or Vault Owner to get a report on Passwords that are soon to Expire.

 

ReportPasswordsOutOfSync

This method allows an Administrator or Vault Owner to get a report on Passwords that are out of Sync.

 

ReportPasswordsNotBeingSynced

This method allows an Administrator or Vault Owner to get a report on any Passwords which are not set to be Synchronized.

 

ReportUserPermissions

This method allows an Administrator to get a report on the collected permissions of a User.

 

ReportPermissionsChanged

This method allows an Administrator to get a report on what Permissions have changed recently.

 

ReportPasswordRequestsApproved

This method allows an Administrator or Vault Owner to get a report on what Password Requests have been approved recently.

 

ReportPasswordRequestsDenied

This method allows an Administrator or Vault Owner to get a report on what Password Requests have been denied recently.

 

ViewCompleteRequestsDenial

This method allows an Administrator to view a completed, denied, Password Request.

 

ViewCompleteRequestApproval

This method allows an Administrator to view a completed, approval, Password Request.

 

ReportActivityRevealedPasswords

This method allows an Administrator or Vault Owner to get a report on what Passwords have been revealed.

 

ReportActivityInactiveUsers

This method allows an Administrator to get a report on User who have not been active in the AuthAnvil Password Server.

 

ReportActivityFailedLogons

This method allows an Administrator to get a report on recent Failed Logon attempts.

 

ReportActivityAdminActivity

This method allows an Administrator to get a report on recent Administrative activity in the AuthAnvil Password Server.

 

ReportActivityPasswordRevealFrequency

This method allows an Administrator to get a report detailing the frequency of Password Reveals, used in generating charts.

 

GetOrgCharts

This method gets the Password Activity charts for the Users Organization, which are automatically updated every hour.

 

GetChartImageByID

This method gets one of the chart images as a byte array.

 

GenerateNewCharts

This method allows an Administrator to force a manual update of the Password Activity Charts.

 

OwnsAPrivateVault

This method checks to see if the User owns a Private Vault.

 

CreatePrivateVault

This method allows a User to create their Private Vault.

 

SignInToPrivateVault

This method is used to Verify a Users Private Vault Password, and does not return a seperate key or token.

 

InsertNewPrivatePassword

This method allows a User to add a new Password to their Private Vault.

 

UpdatePrivatePassword

This method allows a User to update one of their Private Passwords.

 

UpdatePrivatePasswordRecord

This method allows a User to update the associted information for one of their Private Passwords.

 

UpdatePrivateVaultPassowrd

This method allows a User to update the Password they use to sign in to their Private Vault with, which also functions as a partial encryption key for their Private Passwords.

 

DeletePrivatePassword

This method allows a User to delete one of their Private Passwords.

 

DeletePrivateVault

This method allows a User to delete their Private Vault.

 

RevealPrivatePassword

This method allows a User to reveal one of their Private Passwords.

 

GetPrivatePasswordList

This method allows a User to get a list of all of their Private Passwords.

 

GetPrivatePasswordRecord

This methid allows a User to get the associated information for one of their Private Passwords.

 

ExportPrivateVault

This method allows a User to export the Contents of their Private Vault.

 

AddTask

This method allows a User to add a Task item to the current Task list, which is displayed depending on its type.

 

GetTask

This method allows a User to view a specific Task Record.

 

GetTaskList

This method allows a User to view the list of Tasks that are related to their account or Vaults.

 

RemoveManualUpdateTask

This method allows a User to remove a Manual Update task, which is usually set as part of the process for Expiring all Passwords a User knows.

 

ViewPasswordRequst

This method lets a Vault Owner view a pending password Request.

 

ViewCompletedPasswordRequest

This method lets a Vault Owner view a completed Password Request.

 

ViewCompletedPasswordRequestByRequestID

This method lets a Vault Owner view a completed Request by its original Request ID, rather than by the Reponse ID.

 

ApprovePasswordRequest

This method lets a Vault Owner approve a Password Request.

 

DenyPasswordRequest

This method lets a Vault Owner deny a Password Request.

 

GetApprovedAgentList

This method lets a User get a list of Approved Sync Agents that can be used for Syncing Passwords.

 

GetPendingAgentList

This method lets an Administrator see a list of Agents awaiting approval.

 

ApproveSyncAgent

This method lets an Administrator approve a Sync Agent.

 

DenySyncAgent

This method lets an Administrator deny a Sync Agent.

 

GetSyncAgentDetails

This method lets an Administrator view the details of an approved Agent.

 

GetSyncAgentRequestDetails

This method lets an Administrator view the details of an Agent pending approval.

 

UpdateSyncAgent

This method allows an Administrator to update a Sync Agent record.

 

DeleteSyncAgent

This method allows an Administrator to Delete a Sync Agent.

 

EnableSyncAgent

This method allows an Administrator to Enable a Disabled Sync Agent.

 

DisableSyncAgent

This method allows an Administrator to Disable and Enabled Sync Agent.

 

CreateSyncChain

This method allows a User to create a Password Sync Chain.

 

UpdateSyncChain

This method allows a User to update a Password Sync Chain.

 

DeleteSyncChain

This method allows a User to delete a Password Sync Chain.

 

GrantAgentAdminAccess

This method allows an Administrator to give a Sync Agent a set of linked Credentials.

 

RevokeAgentAdminAccess

This method allows an Administrator to remove a Sync Agent’s linked Credentials.

 

UpdateAgentAdminAccess

This method allows an Administrator to update a Sync Agent’s linked Crednetials.

 

ApproveAgentAdminRequest

This method allows a Vault Owner to approve the assigning of one of their Passwords to a Sync Agent as a linked Credential, when the original Admin was not an owner of the Password.

 

DenyAgentAdminRequest

This method allows a Vault Owner to deny the assigning of one of their Passwords to a Sync Agent as a linkied Credential.

 

GetCompletedSyncAgentCredentialRequest

This method allows an Administrator to view a completed Credential Request record.

 

GetPendingSyncAgentCredentialRequest

This method allows an Administratror to view a pending Credential Request record.

 

GetAgentCredentialIDs

This method returns the ID values for the Password and Vault for the Agent’s linked Credentials.

 

GetSyncTypeList

This method gets a list of the possible Sync types for a given link in a Sync Chain.

 

GetAgentListForVault

This method gets a list of Sync Agents that can be used in the specified Vault.

 

GetSyncInfoRecrod

This method allows a User with Modify permissions to view a Sync Info record for the purposes of initiating an Override.

 

AdminSyncOverrider

This method allows a User with Modify permissions to create a new Sync Info record with higher credentials, to correct a failed Sync.

 

GetBasicSSOCertInfo

This method allows an Administrator to get the Subject and Expiration of the SSO Certificate.

 

ImportNewCertificate

This method allows an Administrator to import a new SSO Certificate.

 

LicenceCheck

This method allows an Administrator to make an immediate Licensing Check.

 

GenerateGuidForPassword

This method allows a User with Modify permissions to create a Guid for a Password.

 

DeleteGuidForPassword

This method allows a User with Modify permissions to remove a Guid form a Password.

 

ViewGuidForPassword

This method allows a User with Read permissions to see the Guid for a Password.

 

GenerateGuidForPrivatePasswrod

This method allows a User to generate a Guid for a Private Password.

 

DeleteGuidForPrivatePassword

This method allows a User to remove a Guid form a Private Passwrod.

 

ViewGuidForPrivatePassword

This method allows a User to see the Guid for a Private Password.

 

ListThirdPartyCertificates

This method allows an Administrator to see the list of Third Party Certificates.

 

CreateThirdPartyCertificate

This method allows an Administrator to create a new Third Party Certificate.

 

DownloadThirdPartyCertificate

This method allows an Administrator to download a Third Party Certificate.

 

DeleteThirdPartyCertificate

This method allows an Administrator to delete a Third Party Certificate.

 

CreateNewOrg

This method allows an Administrator in Org 1 to create a new Organization.

 

EnableOrg

This method allows an Administrator in Org 1 to Enable a Disabled Organization.

 

DisableOrg

This method allows an Administrator in Org 1 to Disable an Enabled Organization.

 

GetOrg

Thid method allows a User to get information on their Organzation.

 

GetRDPCPolciy

This method allows User to view a specified RDP Policy.

 

GetRDPCPolicyList

This method allows a User to view a list of RDP Policies.

 

GetRDPCPolicyForPassword

This method allows a User with Read permissions to view the RDP Policy of a specific Password.

 

AssignRDPCPolicyToPassword

This method allows a User with Modify permissions to assign an RDP Policy to a Password.

 

RemoveRDPCPolicyFromPassword

This method allows a User with Modify permissions to remove the RDP Policy from a Password.

 

UpdateRDPCPolicyForPassword

This method allows a User with Modify permissions to change the RDP Policy for a Password.

 

CreateConnectionKey

This method allows a User with Read permissions to create a Connection Key for a Password, to pass off to the RDP Connector tool.

 

CreateConnectionKeyAssociation

Creates and RDP Connection Key, using machine info from an Association.

 

GetRemoteConnectionCredentials

Gets Credentials to complete a remote connection, using a connection key.

 

GetPasswordVerifierForKeyID

Gets data needed for the RDP process, using a connection key.

 

GetListfRDPPasswordsForUser

Returns a list of all RDP enabled Passwords the User can see.

 

CreateRDPPolicy

Creates a custom RDP Policy to control RDP access.

 

UpdateRDPPolicy

Updates a custom RDP Policy.

 

DeleteRDPPolicy

Removes a custom RDP Policy.

 

CreatePersonalVault

Creates a Vault tied to a single user in the Personal Scope.

 

ViewPersonalVault

Returns data on a single Personal Vault.

 

ViewPersonalVaults

Returns the User’s list of Personal Vaults.

 

ViewPersonalVaultsAdmin

Shows a list of all Personal Vaults, and their owners, to the Admin. Passwords cannot be viewed.

 

ViewPersonalVaultOwnerEmails

Gets the stored email address for the given Personal Vault owner.

 

TransferPersonalVault

Creates a request to the owner of a Personal Vault to add an additional Owner. Admin Only.

 

ApprovaPersonalVaultTransfer

Allows an Owner to accept a transfer request, any add the requesting Admin as an Owner.

 

ViewPersonalVaultTransferRequests

Shows a list of all pending Personal Vault Transfer Requests.

 

ViewPersonalVaultsFiltered

The same as ViewPersonalVaults, but with sorting, searching, and paging options.

 

ViewPersonalVaultsAdminFiltered

The same as ViewPersonalVaultsAdmin, but with sorting, searching, and paging options.

 

GetRoleList

Returns the list of roles for the Organization.

 

GetRoleListFiltered

The same as GetRoleList, but with sorting, searching, and paging options.

 

GetRoleListFilteredUser

Gets a User’s Roles, with sorting, searching, and paging options.

 

GetRoleListByScope

Return a list of Roles for a given Scope.

 

ViewRole

Gets data on a single Role.

 

ViewRoleUsers

Shows all Users who are a member of the selected Role.

 

ViewUserRoles

Shows a list of Roles that the selected User belongs to.

 

AddRole

Creates a new Role.

 

ModifyRole

Updates a Role.

 

DeleteRole

Removes a Role.

 

AddUsersToRole

Add one or more users to a given Role, giving them access to all the permissions of that Role.

 

RemoveUsersFromRole

Removes one or more users from a Role.

 

AssignScopesToRole

Adds one or more Scopes to a Role, allowing that Role to have permissions across more Scopes.

 

GetScopesForRole

Returns the Scopes the selected Role has access to.

 

RemoveScopesFromRole

Removes one or more Scopes from the selected Role.

 

ProcessMasterImport

Processes an Import file with User, Roles, Scopes, Vaults, and Passwords.

 

ProcessUserImport

Processes an Import file with Users, Roles, and Scopes.

 

ProcessVaultImport

Processes an Import file with Vaults and Passwords.

 

CreateTotalPasswordBackup

Creates a Password Backup in clear text, as an import file.

 

CreateTotalUserRoleBackup

Creates a User and Role backup as an import file.

 

CreateTotalExport

Creates a Vault, User, Role, Scope, and Password backup, in clear text, as an import file.

 

CheckAllSignedStoredProcedures

Verifies the signature on all stored procedures in a local SQL environment.

 

GetWorkflowList

Returns a list of Workflows that can be used in Web Syncing.

 

GetWorkflowListRF

The same as GetWorkflowList, but with sorting, searching, and paging options.

 

GetWorkflow

Returns full data on a single Workflow.

 

AddWorkflow

Creates a new Workflow.

 

UpdateWorkflow

Updates a workflow.

 

DeleteWorkflow

Removes and Workflow, and desyncs all Passwords using that Workflow.

 

CreateWebSync

Creates a Web Sync Chain for a Password, using a given workflow.

 

DeleteWebSync

Removes a Web Sync Chain.

 

UpdateWebSync

Updates a Web Sync Chain.

 

ViewWebSync

Shows the current Web Sync Chain of a Password.

 

GenerateWebConnectionKey

Generates a connection key to be used in conjunction with SSO.

 

ImportWorkflows

Adds one or more workflows at a time.

 

CreatePasswordPolicy

Creates a Password policy that can be used to determine the acceptability of a password in a shared or personal vault.

 

DeletePasswordPolicy

Removes a Password Policy.

 

MapPolicyToPassword

Assigns a policy to a Password, which will be evaluated when that Password value is changed.

 

UnmapPolicyFromPassword

Removes a policy from the selected password.

 

ViewPasswordPolicyList

Shows a list of all Password Policies.

 

ViewPasswordPolicyForPassword

Shows the current policy tied to the selected password.

 

DownloadPublicServiceCert

Returns the public key of the main service certificate, which is needed when setting up Third Party connections.

 

CreateAssociation

Creates an Association, an object that represents a machine, service, or web location.

 

MapPasswordToAssociation

Ties a password to an Association, to make it easier to find when looking up specific devices.

 

MapScopesToAssociations

Maps one or more Scopes to an Association, making it available across more Vaults.

 

UpdatePasswordAssociations

Modifies which Associations a Password is tied to.

 

UpdateAssociationScopes

Modifies which Scopes are mapped to an Associations.

 

UpdateAssociations

Modifies the Association data.

 

DeleteAssociation

Removes an Association.

 

DeleteAssociationsFromPassword

Removes all Association mappings from a Password.

 

DeleteScopesFromAssociation

Removes all Scopes from an Association.

 

GetAssociationListRange

Gets a paged list of Associations.

 

GetPasswordAssociations

Gets the list of Associations tied to a Password.

 

GetPasswordAssociationsTotal

Gets the full list of Association, where those tied to the password are marked with a ‘selected’ flag.

 

ViewPasswordsForAssociation

Gets a list of Passwords tied to the selected Association.

 

ViewPasswordsForAssociationFiltered

The same as ViewPasswordsForAssociation, but with sorting, searching, and paging.

 

GetScopesForAssociation

Gets the list of Scopes tied to an Assocaition.

 

ViewAssociationTypes

Returns the list of Association categories that an Association can belong to – Server, Workstataion, Service, etc.

 

ViewAssociation

Gets data on a single Association.

 

ViewAssociatioByGuid

The same as ViewAssociation, but the lookup is done via GUID, rather than ID number.

 

ViewPasswordsWithoutAssociations

Returns a list of Passwords that are not tied to any Associations.

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk