https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/98986#M17457 <P>Hi All,</P><P>&nbsp;</P><P>Does anyone know how to connect to WFA ( via SOAP powershell script ) so the powershell can use the existing windows credentials where the script is being executed ?</P><P>&nbsp;</P><P>This is to avoid having to plaintext or hardcode the password somewhere in the script.</P><P>&nbsp;</P><P>Thanks in advance!</P> Thu, 05 Jun 2025 05:20:04 GMT trentino123 2025-06-05T05:20:04Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/98986#M17457 <P>Hi All,</P><P>&nbsp;</P><P>Does anyone know how to connect to WFA ( via SOAP powershell script ) so the powershell can use the existing windows credentials where the script is being executed ?</P><P>&nbsp;</P><P>This is to avoid having to plaintext or hardcode the password somewhere in the script.</P><P>&nbsp;</P><P>Thanks in advance!</P> Thu, 05 Jun 2025 05:20:04 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/98986#M17457 trentino123 2025-06-05T05:20:04Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/98993#M17458 <P>I don't think we can use the existing windows user credentials for this. If you do not want to hardcode the WFA login password in the script, you can do the following:</P><P>&nbsp;</P><P><SPAN>1. Prompt the user for Credentials when executing the script. This is open a prompt for the user to enter credentials.</SPAN></P><P>&nbsp;</P><P><EM>$wfaCreds =&nbsp;Get-Credential</EM></P><P>&nbsp;</P><P>#Now use this credential in your code with&nbsp;</P><P><EM>$wfa = New-WebServiceProxy -Uri $uri&nbsp;-Credential $wfaCreds</EM></P><P>&nbsp;</P><P>&nbsp;</P><P><SPAN>2. Save the credentials in encrypted form in a password file. Only the windows user who created the file can decrypt it. So its fairly secure and can only be run by 1 user.</SPAN></P><P>&nbsp;</P><P><EM>"password" | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureString |Out-File C:\pass.txt</EM></P><P>&nbsp;</P><P><SPAN>Now in your Powersell script: Get the contents of this file, convert to secure string and build your credential.</SPAN></P><P>&nbsp;</P><P><EM>$pass = Get-Content C:\pass.txt</EM></P><P>&nbsp;</P><P><EM>$wfaCreds = &nbsp;New-Object -TypeName System.Management.Automation.PSCredential -argumentlist $username,($pass&nbsp;| ConvertTo-SecureString)</EM></P><P>&nbsp;</P><P><SPAN>sinhaa</SPAN></P> Wed, 07 Jan 2015 17:58:50 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/98993#M17458 sinhaa 2015-01-07T17:58:50Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99009#M17461 <P>Hi,</P><P>&nbsp;</P><P>You can cache your domain credentials in the WFA credential cache and invoke the workflow from a remote host using the REST API. The workflow can then retrieve the domain credentials using the "Get-WFACredential" Command to ensure the workflow you want to invoke is executed within the correct security context. There are some examples of using the REST API here:</P><P>&nbsp;</P><P><A target="_blank" title="http://community.netapp.com/t5/OnCommand-Storage-Management-Software-Articles-and-Resources/Interactive-execution-of-Workflows-as-CLI-using-REST-APIs-in-PowerShell/ta-p/86107" href="https://community.netapp.com/t5/OnCommand-Storage-Management-Software-Articles-and-Resources/Interactive-execution-of-Workflows-as-CLI-using-REST-APIs-in-PowerShell/ta-p/86107">http://community.netapp.com/t5/OnCommand-Storage-Management-Software-Articles-and-Resources/Interactive-execution-of-Workflows-as-CLI-using-REST-APIs-in-PowerShell/ta-p/86107</A></P><P>&nbsp;</P><P>/matt</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 07 Jan 2015 22:55:07 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99009#M17461 mbeattie 2015-01-07T22:55:07Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99073#M17470 <P>Thanks Sinhaa! It did the trick.</P> Thu, 08 Jan 2015 19:59:18 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99073#M17470 trentino123 2015-01-08T19:59:18Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99074#M17471 <P>Thanks Matt,</P><P>&nbsp;</P><P>That works fine , you only need the credentials stored in advance.</P><P>&nbsp;</P><P>Thanks!</P> Thu, 08 Jan 2015 20:00:40 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/WFA-SOAP-script-getting-windows-credentials-to-avoid-hardcoding-pwds-in-the/m-p/99074#M17471 trentino123 2015-01-08T20:00:40Z