Update Account Error code : 401 on CyberArk Privilege Cloud Shared Services

GilbertoOledo14 · December 6, 2024, 9:04pm

Hello everyone!
We are trying to integrate CyberArk Privileged Cloud Shared Services with IdentityNow.
So far we managed to connect and add accounts.
However, we tried to sync an attribute from IdentityNow and received the following error:

[“openconnector.InvalidConfigurationException: [ InvalidConfigurationException ] \n [ Possible suggestions ] Please check OAuth2 Token \n [ Error details ] Error while performing operation : Update Account Error code : 401 {"schemas":["urn:ietf:params:scim:api:messages:2.0:Error"],"status":"401","detail":"You are not authorized to perform this operation. Please contact your IT helpdesk."}”]

We are following the CyberArk documentation referenced by IdentityNow. We already made sure that the SCIM user has the “ Role Management” and “ User Management” permissions. Even the user has the right to “Vault Management”.

Are there any settings we are missing?
Thanks in advance,
Regards.

sk8er23 · December 6, 2024, 10:38pm

What attribute are you trying to sync?

GilbertoOledo14 · December 6, 2024, 10:54pm

I’m trying to sync
name.givenName

sunnyajmera · December 12, 2024, 12:58am

Have you tried using postman or any other tool to see if it works outside of ISC?

GilbertoOledo14 · December 13, 2024, 3:31pm

Not yet. What we did to rule out the SCIM User privilege issue, was to temporarily assign full privileges to the user (System Adminstrator).
This worked and allowed to synchronize the attribute.

system · February 11, 2025, 3:32pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.