Get list of Identities Workflow steps failed with http 403 Error

vijaykb · March 17, 2024, 3:53pm

Hi Experts,

Below workflow steps is not working in production. It is throwing below error message. Same steps work in sanbox/test environments. Please help. thanks
Workflow Steps:

“Get List of Identities”: {
“actionId”: “sp:get-identities”,
“attributes”: {
“inputQuery.$”: “$.defineVariable.searchString”,
“inputSavedSearch”: null,
“searchBy”: “searchQuery”
},
“description”: null,
“nextStep”: “Compare Numbers”,
“type”: “action”,
“versionNumber”: 2
}

=========
Error message:

{“displayName”:“Get List of Identities”,“error”:“request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden”,“stepName”:“getListOfIdentities”,“task”:“sp:get-identities”}

{“error”:“actionStep(Get List of Identities) Err: task failed: activity error (type: sp:identity:get-identities:v2, scheduledEventID: 17, startedEventID: 18, identity: 33757d64-2e7d-4361-a5da-5e560b7eeb48): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden”}

uday_kilambiCTS · March 18, 2024, 10:31am

Hi @vijaykb ,

Welcome to the SailPoint Developer Community!

Reason for 403 error mostly would be the user credentials you are using for the API doesn’t have access to execute this endpoint. Please ensure the user that you are executing the workflow has similar rights and permissions as in sandbox.

Regards,
Uday Kilambi

baoussounda · March 18, 2024, 2:10pm

Hi @vijaykb,

What action do you use exactly in this step ?

vijay_sharma · March 18, 2024, 3:25pm

Thanks @uday_kilambiCTS ,

I found that workflow owner service identity was missing the elevated access “ORG_Admin”. after adding the access workflow completed successfully. Thank you so much for your help.

vijay_sharma · March 18, 2024, 3:27pm

Thanks @baoussounda ,

“actionId”: “sp:get-identities”,

It worked after adding elevated access to workflow owner service identity. Thanks for help

system · May 17, 2024, 3:27pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
ISC Demo Tenant - Workflow Send Email step fails with 403 error when testing ISC Discussion and Questions workflows , identity-security-cloud	6	195	July 19, 2024
Get List of Identities Error ISC Discussion and Questions workflows , identity-security-cloud	7	258	June 4, 2024
Workflow Get Identity steps failure ISC Discussion and Questions workflows , identity-security-cloud	4	118	August 2, 2024
Workflow Get List of Identities (action) ISC Discussion and Questions workflows , identity-security-cloud	4	39	November 15, 2024
Workflow - "Action:Get List of Identities" ISC Discussion and Questions workflows , identity-security-cloud	6	129	October 26, 2024

Get list of Identities Workflow steps failed with http 403 Error

Related topics