Which IIQ version are you inquiring about?
8.4P2
Please share any images or screenshots, if relevant.
[Please insert images here, otherwise delete this section]
Please share any other relevant files that may be required (for example, logs).
[Please insert files here, otherwise delete this section]
Share all details about your problem, including any error messages you may have received.
This is regarding SailPoint and AWS integration, we are facing an issue when we are trying to create an account using non alphanumeric characters.
Error Message:
sailpoint.connector.ConnectorException: The specified value for userName is invalid. It must contain only alphanumeric characters and/or the following: +=,.@_- (Service: AmazonIdentityManagement; Status Code: 400; Error Code: ValidationError; Request ID: 1e3d622e-b3e2-4a44-a829-b01ddcbe21b0; Proxy: null)
Any idea how do we deal with this case?
Yes, this error is coming from AWS IAM during a SailPoint IdentityNow connector operation. The specified value for userName is invalid. It must contain only alphanumeric characters or the following: +=,.@_-indicates that the userName being passed does not conform to AWS IAM’s required format.
-
Inspect the userName being generated:
Ensure it only includes letters, numbers, or these special characters: +=,.@_-
Characters like !, #, *, &, %, (, ) or spaces are not allowed.
-
Adjust the provisioning policy in IdentityNow:
Go to the connector’s Provisioning Policy (under Account Attributes).
Find the field mapping for userName.
Ensure the transformation or direct value complies with the allowed character set.
-
If the name is derived from identity attributes (like displayName, firstName.lastName, etc.):
Add a transformation or rule to sanitize/strip invalid characters.
For example, use a Regex Replace transformation to remove disallowed characters.
3 Likes