If we change the password of the IQ Service Account(Ex AD)
we recently had to change the service account password, but now the source connection is falling in ISC.
Do we need to update the password somewhere else. like in the IQService installed on the server, anywhere else in the platform to restore the connection.
If you change the service account password you have to update the password on the source or else the connectivity btw the ISC and AD will not work and provisioning activities will fail.
First, for the Service account password reset, we have updated the password from the AD side, and then updated on SailPoint. but it’s not working.
I updated the password in the config settings of AD application in ISC like domain and forest, but still the connection is failing.
Can you show a screenshot of your error?
Are you using the same service account for the IQService and for the forest / domain configuration?
You just need to update the password in the source and it should works.
Regards,
Mathieu G
Please make sure the same account is being used as Log On in the machine where IQService is installed. You can check it in Services.msc → IQService → Properties → Log On. Also, the account you are trying to connect with should be register. Please check the IQService Installation doc in community once.
We have detected an error from the managed system.
Error Received:
java.lang.InterruptedException: Timeout waiting for response to message 0 from client ecd9e162-e015-454a-9a3b-90d58da2927c after 30 seconds.
We are using the same account for both the IQ Service Account and Forest/domain.
However, there was a change in the IQ Service Account password. We are not certain whether it now matches the service account password or if it is different.
As a result, we are encountering the above error.
Hi,
You mentioned Services.msc — is this located inside the VM or the server ?
Do I need to access the VM or the server and run Services.msc to check if the IQ service is installed?
Win + R, type services.msc, and press Enter.As per my understanding you didn’t complete the step2. I believe you have completed step1 and step3 but not step2
step1:(change password) When you change the password for a service account in Active Directory.
step2:(update password) You must also update that password in services.msc on any server where windows service(IQ service) is configured.
After completing the step2
you need to restart the IQ service.
(or)
Try to reboot of the IQ Service server(Windows server where IQ service is installed)
step3:(update password)
Finally, update the password in Identity Security Cloud’s source configuration.
{you need to update all the AD sources}
Try to connect without iq service if it works then there might be some firewall issues with your iq service and va which you might need to resolve
Hi @Pattabhi,
You are right — I have completed step one, where I updated the password in Active Directory and changed it in the AD source configuration.
However, I haven’t updated it in Services.msc yet.
Let me try that step and see if it works.
Thank you,
Arunodai
Actually, I’ve already tried this.
But it seems that IQService is installed on a different server.
Is there a way to check exactly where IQService is installed?
Hi Pattabhi,
I’ve checked the AD configuration, and the IQService host is the server where IQService is installed, right?
So I’ll need to log in to that server and look for IQService.
Also, is it okay to use the same server for both Sandbox and Production environments?
Because currently, we have the same server configured for both.
That’s correct!
as per my knowledge:
While it’s technically possible to use the same IQ Service server for both Sandbox and Production environments, it is generally NOT recommended practice.
