Spadmin management in CyberArk

IdentityIQ (IIQ) IIQ Discussion and Questions
1

Which IIQ version are you inquiring about?

Unsure

Please share any images or screenshots, if relevant.

Please share any other relevant files that may be required (for example, logs).

Share all details about your problem, including any error messages you may have received.

Hi All, is anyone managing the SailPoint Spadmin account in CyberArk? If so, how have you configured this? I’s very inconsistent when managing the password when it works, I get Recieved HTTP Response <=====
StatusCode: 200
Body: {“identity”:“spadminpam”,“authentication”:“success”} and when it doesn’t I get | Recieved HTTP Response <=====
StatusCode: 401
Body: {“schemas”:[“urn:ietf:params:scim:api:messages:2.0:Error”],“detail”:“User does not have access.”,“status”:“401”}

Thanks

2

Hi @rrehman_21
It’s interesting, however obviously seems an access or permission issue…
I will just tell some steps to troubleshoot based on my previous experience in order…

Check Safe Permissions for API User (spadminpam)
Validate AppID & SCIM API Access (Manually even away from SailPoint Env)
Confirm Password Rotation in CyberArk
Enable Debug Logs in SailPoint (log4j.properties)

3

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.