Hi,
We are currently using SailPoint IdentityIQ 8.2 with Active Directory configured for pass-through authentication.
Earlier today, our primary Global Catalog (GC) server, which is configured in IdentityIQ, unexpectedly went down. As a result, users were unable to log in. Our plan was to log in using the spadmin account to update the configuration and point to the secondary GC server, allowing users to regain access.
However, upon attempting to log in with the spadmin credentials via the GUI, the login process hung indefinitely after clicking the login button. It appears that IdentityIQ is attempting to validate spadmin against Active Directory, which results in a timeout before falling back to native authentication.
We also tried accessing the IIQ console using spadmin, but that failed as well.
Is there a way to bypass pass-through authentication during Active Directory outages to ensure that native authentication accounts like spadmin can still log in?