3328886 - HTTP 401 - Authentication credentials are invalid or not allowed for this endpoint

Symptom

Provisioning users to Identity Authentication (IAS) target system while authentication is set to 'ClientCertificateAuthentication' instead of 'BasicAuthentication' you see the error 'Authentication credentials are invalid or not allowed for this endpoint' in your IPS job logs.

error=org.apache.camel.http.common.HttpOperationFailedException: HTTP operation failed invoking https://<tenant ID>.accounts.ondemand.com/service/scim/Users/ with statusCode: 401, Response: {"status":"401","schemas":["urn:ietf:params:scim:api:messages:2.0:Error"],"detail":"Authentication credentials are invalid or not allowed for this endpoint."},

Environment

Identity Provisioning
Identity Authentication

Product

Identity Provisioning 1.0

Keywords

ClientCertificateAuthentication, BasicAuthentication, HTTP 401, Authentication credentials are invalid or not allowed for this endpoint, Identity Authentication, Identity Provisioning, IAS, IPS, HttpOperationFailedException, 401, admin, ids, sfsf, credentials, administrator access, IAS,The authorization header is invalid or missing, Unauthorized

, KBA , BC-IAM-IPS , Identity Provisioning Service (IPS) , BC-IAM-IDS , Identity Authentication Service , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.