Getting the following error.
Exception during aggregation of Object Type channel on Application Entra SaaS [source]. Reason: java.lang.RuntimeException: An error occurred while aggregating Application Entra SaaS [source] [ConnectorError] Error occurred while fetching channel Request failed with status code 403
Account aggregation works. I’m getting the error during entitlement aggregation.
Any ideas on how to fix?
Hi Nai Saelee,
Your app registration doesn’t have permission needed for the entitlement objects you’re aggregating, 403 error , even though it has enough to read users but it’s blocking you from aggregating users, check permissions assigned
another check will be Conditional Access / Graph restrictions
Thanks,
Mahesh
Hello Nai, 403 error stands for permission issues. You have the connectivity and seems like you were able to have account aggregated, however the entitlement fails.
Two things here, check permissions assigned on the entitlement aggregation side. And go over your configurations as well to see there is no restriction from entitlements in your development configuration side.
Please if my response helped to solve the issue, help me marking it as solution. My regards
Hello,
This seems to be permission issues.
A 403 Forbidden error during entitlement aggregation in SailPoint Identity Security Cloud (ISC) typically means your Entra ID (Azure AD) Service Principal has the correct API permissions assigned, but they haven’t been granted Admin Consent, or a specific permission required for “Channels” (Teams) is missing.
Hence, kindly provide the respective permissions to your client credentials - App Registered and retry.
@SailAway Is the issue resolved at your end ? where you able to figure out for which attribute it is throwing the error and what permission you have added to fix it ?