Do users created by JIT provisioning have a default password?
Sorry are you referring to JWT?
I’m referring to Just In Time provisioning using SAML authentication
No, there’s no default password. See the relevant part of the Redash docs:
Redash stores hashes of user passwords that were created through its default password configuration. If you create users through SAML or Google Login, a user is created but no password hash is stored. These users can only log-in through the third-party authentication service.
If you use Password Login and subsequently enable Google OAuth or SAML 2.0, it’s possible that a user with one email address has two passwords to log-in to Redash: their Google or SAML password, and their original Redash password.