IGA portal not opening

I am not able to open the IGA portal and it is telling me the user is authenticated and signed in but the user do not have the correct privileges .

I am getting the below error .

We are using SAML2.0 and authentication is done against Azure AD .

Note : My assumption is that might the Identity collected data might be corrupted and it is not letting me in even if I am the Global Administrator.

But I am not able to login using Bootstrap admin as Azure is not recognizing the Bootsrap admin credentials.

Any help would be appreciated .

  • 0  

    Hello,
    When utilizing SAML, the Bootstrap user must be an LDAP user in the Authorization Source that OSP is configured with. Additionaly,they also have to be in the Authorization Source that the SAML provider is configured with. Meaning that one can not utilize the Filesystem Bootstrap User approach. One must provide the full DN (exact case matching) of the LDAP User that will be utilized for the Bootstrap user.

    Note: This is the same requirement for when utilizing Kerberos or OSP deployed with the Identity Applications.


    1) What is the exact version of Identity Governance are you using?

    2) Are there any errors in logs?

    3) Were you ever able to successfully access IG when utilizing SAML Authorization?

    It might be necessary to open a Support Ticket for us to assist you.

    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity

  • 0  

    Hi,

    As discussed on our meeting last Tuesday this is most likely due to issues with the igops database. If I remember correctly from the error messages shown when trying to run configupdate and catalina logs it mentioned database errors and problems with deadlocks.

    I don't think that the error message is shown due to a mapping problem between the identity from OSP and a user in the IG database, it is shown because IG can't access the user information in the igops database.

    I suggest registering a Support Ticket to get help.

    Best regards,
    Tobias