Validate a password against a specific policy ID on a specific tenant.

Entitlement required: anyone (Anyone that has a valid access token).

If the password was found in a bad password dictionary, but the dictionary policy level is set to warning then the header "isv-dictionary-policy" will be returned set to one of "WARNLOCAL" or "WARNGLOBAL"
The password is validated against the password policy and checked whether it is present in the bad password dictionary policy.
Note: Only the passwordStrength elements of the password policy are enforced. However, the passwordStrength passwordMinDiffChars element is not enforced.

If custom password intelligence warning is enabled and a password is provided that is listed in it, the 204 response includes the header 'isv-dictionary-policy' with the value: 'WARNLOCAL'.
If X-Force password intelligence warning is enabled and a password is provided that is listed in it, the 204 response includes the header 'isv-dictionary-policy' with the value: 'WARNGLOBAL'.
If custom password intelligence prevention is enabled and a password is provided that is listed in it, the 400 response can include the header 'isv-dictionary-policy' with the value: 'ENFORCELOCAL'. The corresponding error status is 'PWD_IN_DICTIONARY'.
If X-Force password intelligence prevention is enabled and a password is provided that is listed in it, the 400 response can include the header 'isv-dictionary-policy' with the value: 'ENFORCEGLOBAL'. The corresponding error status is 'PWD_IN_GLOBAL_DICTIONARY'.

Path Params
string
required

The identifier of the password policy to validate the password against.

Query Params
string

If set to true then use password authentication dictionary check. If false, or not present, password change dictionary check is used.

string

The ID of the Password Dictionary Policy to use, else it defaults to "0".

Body Params

The request payload which includes the password to be validated.

array of strings
required

An array of strings that contain the URIs that indicate the namespaces of the SCIM schemas that define the attributes in the current JSON structure. The schema "urn:ietf:params:scim:schemas:ibm:core:3.0:policy:Password"is returned.

schemas*
string
required

The password to validate

Responses
204

No Content.

Language
URL
Choose an example:
application/scim+json