Operations Orchestration integration use case

You can implement an Operations Orchestration flow for resetting a password. At a user's request for a reset, a new temporary random password is generated. The user is then sent a link so they can log in and change to a permanent password.

To implement an Operations Orchestration password reset flow, follow these steps:

Search for	Example	Results
A single word	`cat`	Topics that contain the word "cat". You will also find its grammatical variations, such as "cats".
A phrase. You can specify that the search results contain a specific phrase.	`"cat food"` (quotation marks)	Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase.

Search for	Operator	Example
Two or more words in the same topic	`AND` `and` `+` (plus symbol) `&` (ampersand)	`cat AND dog` `"cat food"+milk` `"cat food"&"dog food"`
Either word in a topic	`OR` `or` `\|` (pipe)	`cat OR dog` `cat \| dog`
Topics that do not contain a specific word or phrase	`NOT` `not` `!` (exclamation point)	`NOT cat` `! dog`
Topics that contain one string and do not contain another	`^` (caret)	`cat ^ mouse`
A combination of search types	`( )` parentheses	`cat + (dog \| mouse)` `cat \| dog + (! mouse)`

Install Operations Orchestration Community edition. Go to Administration > Utilities > Integration > Endpoints. Open the right panel if it is not already displayed. Click the Operations Orchestration Community Edition Download link to download it.

Download, install, and configure the On-Premise Bridge agent for the integration. For more information, see How to use On-Premise Bridge agents on Windows or How to use On-Premise Bridge agents on Linux.

Set up encryption for the integration. For more information, see How to set up encryption for an Operations Orchestration integration.

Configure the On-Premise Bridge endpoint for the integration. For more information, see How to perform an integration with Operations Orchestration.

Note If you are working with a security hardened Operations Orchestration (OO) server, follow the procedure described in How to configure an agent with a security hardened Operations Orchestration server before proceeding with the integration.

Create a new support offering.

From the main menu, select Plan > Service Catalog > Offerings.
Click New.
In the New Offering dialog box:
- Set Offering type to Support offering.
- Set Status to Active.
- Complete the remaining fields in the dialog box as appropriate for your business logic.
- Click Save & edit.
For more information, see How to create an offering.

Create the user options for the offering.

In the offering record, click the User options tab.

Click New field and type the following values:

Field	Value
Name	Account name Note The system automatically adds “_c” to the end of the field name.
Display name	Account to be reset
Field type	String
Visibility	User

Click Save.

For more information, see How to create an offering.

Create the task plan for the offering.

In the offering record, click the Task plan tab.
Click the First line support tab on this form.

Add an automated task based on the Execute OO Flow business rule and select the Operation Orchestration flow Reset User Password.

In the Set rule dialog box, select Execute Operations Orchestration (OO) flow and click OK.
Click the OO endpoint parameter in the business rule to select the endpoint. Select the endpoint you defined at the beginning of the procedure and click OK.
Click the flow name parameter in the business rule to select the Operations Orchestration flow to execute. Enter Reset User Password in the Search window. Select that flow and click OK.

Click the flow parameters parameter in the business rule to configure the input parameters of the Reset User Password flow. For each parameter, enter a value in Simple mode or enter an Expression Language phrase. (For encrypted parameters, you cannot enter an Expression Language phrase.)

Field	Value
Host	Host IP address. For example: 55.55.55.255
adminUsername	Appropriate user name. For example: domain\Username
adminPassword	Appropriate password for adminUsername
Enter the targeted username	${entity.UserOptions.AccountName_c}
Use Random Password?	True
randomPasswordLength	10 (Or the value according to organization policy.)
New Password	(Leave blank)
emailTo	${entity.RequestedForPerson.Email}
emailServer	Email server address. For example: smtp.server.com
emailFrom	resetPassword@mircofocus.com (or any other email name)

Note

For the emailTo parameter, it is recommended to use a dynamic value, for example: ${entity.RequestedForPerson.Email}.
If the Use Random Password field is set to True, the randomPasswordLength parameter must be filled in. If the Use Random Password field is set to false, the newPassword field must be filled in.

There are no output parameters for this flow. Click OK to finish the task definition. Click Save on the toolbar to save the task plan.

Note When the task runs, it resets the password for the user defined in the Enter the targeted username parameter according to the entered parameters (a random password of specified length or the specified new password). An email is sent to the user specified in the emailTo parameter.

Save the task.
Add an additional automated task. Add the following business rule using the Set field template:

Set Completion code (field) to Fulfilled offline (value)
Save the task.
Add an additional automated task. Add the following business rule using the Set field template:

Set Solution (field) to Resolved automatically (value)
Save the task.
Save the offering.

For more information, see How to build a task/approval plan.

Create the default values for the offering.

In the offering record, click the Default values tab.

Type the following:

Field	Value
Service	The service the request belongs to, according to the organization's business mapping. For example: Network Access Support.
Impact	Single user
Urgency	I am blocked from doing my job
Owner	(Owner of the request)
Help desk group	The group name according to the organization's business mapping.
Category	Access (Accounts & Passwords)\Accounts & Identity\Application access

Save the offering.

To run this task, apply the offering to a request.

For more information, see the following: