I’m working with SailPoint IdentityIQ version 8.2 and I need to install the SIEM plugin. Following the instructions from the official SailPoint SIEM Plugin Installation and User Guide, I updated the iiq.properties file by setting:
plugins.angularSnippetEnabled=true
After that, I restarted Tomcat as instructed.
However, when I try to install the SIEM plugin version 2.1.4 by dragging the .zip file into the IdentityIQ interface, I get the following error:
An error occurred while installing SIEM plugin 2.1.4 zip
I’m not sure what could be causing this issue. Does anyone have experience with this or know what might be wrong?
2024-10-17T08:20:17,593 WARN http-nio-8080-exec-10 sailpoint.server.Servicer:422 - Service did not terminate before timeout: SupportPluginService
2024-10-17T08:20:33,190 ERROR http-nio-8080-exec-1 sailpoint.plugin.PluginInstaller:628 - An error occurred attempting to get a connection to the plugins data source
2024-10-17T08:20:33,210 ERROR http-nio-8080-exec-1 sailpoint.plugin.PluginInstaller:263 - An error occurred during plugin installation
sailpoint.tools.GeneralException: Cannot create PoolableConnectionFactory (Login failed for user 'identityiqPlugin'. ClientConnectionId:e476cf2f-b86e-4a78-bcec-77843c57f135)
Also, I tried installing another plugin, and in that case, it worked.
The documentation states the following:
Note: The SailPoint SIEM plugin requires trigger and sequence functions that the ‘identityiqPlugin’ user is not granted permissions to run when installing using an Oracle database.
After installing the SIEM plugin, run the following scripts in order to complete the creation of the required database functions on the Oracle database.
Although the script should be executed after the installation, it might be necessary to grant those permissions beforehand by running the script
The solution might possibly be:
GRANT SELECT ANY SEQUENCE TO <USER>;
GRANT CREATE ANY TRIGGER TO <USER>;
COMMIT;
@AntonioGvtt -
Based on the information you provided, the error you’re encountering during the installation of the SIEM plugin for SailPoint IdentityIQ seems to be related to insufficient database permissions for the identityiqPlugin user, especially considering you’re using an Oracle database.
The key lines from the logs are:
Connection error: “Cannot create PoolableConnectionFactory (Login failed for user ‘identityiqPlugin’)”
Database permissions issue: The SIEM plugin requires specific permissions related to triggers and sequences, which the identityiqPlugin user might not have.
The solution provided in the documentation suggests running the following commands to grant the necessary permissions to the identityiqPlugin user before trying to install the plugin again:
GRANT SELECT ANY SEQUENCE TO identityiqPlugin;
GRANT CREATE ANY TRIGGER TO identityiqPlugin;
COMMIT;
Here’s a suggested approach to resolve the issue:
Grant the required permissions by running the SQL commands above on your Oracle database. Make sure you’re logged in as a user with the necessary privileges to issue these grants.
Restart the Tomcat server after applying the grants.
Attempt to reinstall the SIEM plugin via the IdentityIQ interface by dragging the .zip file again.
If the issue persists, you may want to review the database connection settings or verify that the user identityiqPlugin has the correct credentials and access rights to the database. Double-check that the iiq.properties file contains the correct database configuration.