Troubleshooting
If you encounter any of the following issues or errors, SailPoint recommends that you follow the guidance provided below to resolve the error before contacting SailPoint Support.
Issue: Enabling/disabling an account fails with the error: Error while disabling account: Unauthorized
Resolution: Cross-check the attribute encrypted in the source config and verify whether the adminApiToken is missing in the value section. Then append the adminApiToken values using the following API request.
Add the following entry to the source using the IdentityNow REST APIs:
PATCH 'https://{orgName}.api.sailpoint.com/v3/sources/<source-id>'
In the body of the PATCH, use the raw-data as follows:
{
"op": "add",
"path": "/connectorAttributes/encrypted",
"value": "apiToken,adminApiToken"
}
Issue: Single account aggregation fails when the entitlement attribute ProjectRole is present in the account schema.
Resolution: Add the following entry to ensure that membership aggregation of Project Roles is skipped with the ResourceObject (RO) as incomplete. Sending the RO as incomplete ensures that the existing Project Role assignments are not removed from ISC. Full aggregation is not impacted by this entry.
key : skipProjectRoleForGetObject
value : true