Symptom
- In IPS, IAS source system/target system was configured with client certificate authentication(property "Authentication": "ClientCertificateAuthentication").
- In ips_jobErrorLogs_<job ID>_<date><time>.zip file, the following 403 error can be seen:
error=org.apache.camel.http.common.HttpOperationFailedException: HTTP operation failed invoking https: //<tenant id>.accounts.ondemand.com/service/scim/Users with statusCode: 403, Response: , - If basic authentication (property "Authentication": "BasicAuthentication") is set, then see KBA 2906040 - IPS job fails with HTTP code 403 when provisioning from/to an Identity Authentication tenant. BasicAuthentication is set.
Read more...
Environment
- Identity Provisioning
- Identity Authentication
Product
Identity Provisioning 1.0
Keywords
ips, iam, ids, ias, job log, provision, sync, cannot read, 403, failed to invoke, error code, Target System returned Forbidden status, client certificate, x.509, expire, expired, certificate , KBA , BC-IAM-IPS , Identity Provisioning Service (IPS) , BC-IAM-IDS , Identity Authentication Service , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.