LoginFailure Audit records when using SCIM

karena · July 10, 2023, 10:12am

We have a service that calls the SCIM API endpoints on a schedule, there are no errors in this service but within IIQ auditing, we can see audit events ‘loginfailure’ and the user shown in these audit events is the ‘client id’ for the account setup to call the SCIM API.

Does anyone have any thoughts or ideas on why the loginfailure audit is coming through even when there is no loss of service or error message in external / calling service?

dheerajk27 · August 3, 2023, 4:00am

@karena,

Can you please share error log so that we could see some more detail, please hide any sensitive information from the logs.

karena · August 3, 2023, 2:47pm

Hi @dheerajk27 ,
I don’t have any logs, all I have are audit records with loginFailure

system · October 2, 2023, 2:48pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
SCIM API: How to audit invocation of IIQ SCIM API IIQ Discussion and Questions	4	1381	July 19, 2023
Get Failed Events IIQ Discussion and Questions	2	977	July 19, 2023
SCIM API and connector support for filtering by users having a Role in IIQ IdentityIQ (IIQ)	0	752	July 5, 2022
IIQ REST API information for 8.1 IIQ Discussion and Questions	10	8098	July 19, 2023
Exception occurred while performing 'Create' operation on identity '61124221': Url: https://test-url.cloud/api/v1/scim/Users, Message: 401 : Unauthorized, HTTP Error Code: 401 IIQ Discussion and Questions webservice-connector , identityiq , provisioning	8	192	April 5, 2024

LoginFailure Audit records when using SCIM

Related Topics