Hi All,
I’m trying to create account in Azure AD source through IdentityNow, provisioning failing with below error despite assigning all the required permissions mentioned in the source integration document. Any inputs please.
Required Permissions (sailpoint.com)
"[“sailpoint.connector.ConnectorException: Exception occurred. Error message - HTTP not ended OK. Response Code - 403 Error - Insufficient privileges to complete the operation.”
Thanks
Gopi
Hi @gopigummadifmc,
Welcome to SailPoint community.
Is the aggregation working fine?
I think its authorization issue. Maybe some permissions are missing.
-Abhinov
Sounds like the service account needs more permissions
Phil
What API Permissions have you added to the App in Azure that you are using to connect? Seems like the required permissions are missing
Have a look at this document for the Azure AD connector from IdentityIQ. IdentityNow uses the same connector classes. You will see the required permissions needed for the App Registration in Azure on page 37.
I would cross reference these against what has been configured and also make sure Admin Consent has been given (this is important).
SailPoint Microsoft Azure Active Directory Connector Guide.pdf (756.1 KB)
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.