Get list of Identities Workflow steps failed with http 403 Error

vijaykb · March 17, 2024, 3:53pm

Hi Experts,

Below workflow steps is not working in production. It is throwing below error message. Same steps work in sanbox/test environments. Please help. thanks
Workflow Steps:

“Get List of Identities”: {
“actionId”: “sp:get-identities”,
“attributes”: {
“inputQuery.$”: “$.defineVariable.searchString”,
“inputSavedSearch”: null,
“searchBy”: “searchQuery”
},
“description”: null,
“nextStep”: “Compare Numbers”,
“type”: “action”,
“versionNumber”: 2
}

=========
Error message:

{“displayName”:“Get List of Identities”,“error”:“request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden”,“stepName”:“getListOfIdentities”,“task”:“sp:get-identities”}

{“error”:“actionStep(Get List of Identities) Err: task failed: activity error (type: sp:identity:get-identities:v2, scheduledEventID: 17, startedEventID: 18, identity: 33757d64-2e7d-4361-a5da-5e560b7eeb48): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden (type: HTTP Response Returned a Client Error, retryable: false): request failed: 403 - 403 Forbidden”}

uday_kilambiCTS · March 18, 2024, 10:31am

Hi @vijaykb ,

Welcome to the SailPoint Developer Community!

Reason for 403 error mostly would be the user credentials you are using for the API doesn’t have access to execute this endpoint. Please ensure the user that you are executing the workflow has similar rights and permissions as in sandbox.

Regards,
Uday Kilambi

ondiaye · March 18, 2024, 2:10pm

Hi @vijaykb,

What action do you use exactly in this step ?

vijay_sharma · March 18, 2024, 3:25pm

Thanks @uday_kilambiCTS ,

I found that workflow owner service identity was missing the elevated access “ORG_Admin”. after adding the access workflow completed successfully. Thank you so much for your help.

vijay_sharma · March 18, 2024, 3:27pm

Thanks @ondiaye ,

“actionId”: “sp:get-identities”,

It worked after adding elevated access to workflow owner service identity. Thanks for help

Topic		Replies	Views
Get List of Identities Error ISC Discussion and Questions workflows , identity-security-cloud	6	117	April 5, 2024
Get list of identities workflow : Error : activity StartToClose timeout ISC Discussion and Questions workflows , identity-security-cloud	2	499	July 19, 2023
SoD Dynamic Approval Reference ISC Discussion and Questions workflows , identity-security-cloud	11	198	April 4, 2024
Issues in Workflow module? ISC Discussion and Questions workflows , identity-security-cloud	5	318	January 16, 2024
IdentityNow - Workflow - Get Identity Action in workflow not working ISC Discussion and Questions workflows , apis , identity-security-cloud , sources	5	753	July 19, 2023

Get list of Identities Workflow steps failed with http 403 Error

Related Topics