Symantec IGA

 View Only
  • 1.  IAzure OICD with Sigma 14.4 Issue: Identity Portal Unauthorized Access, please contact your administrator

    Posted Mar 07, 2024 07:30 PM


    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at javax.crypto.Cipher.doFinal(Cipher.java:2168)

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at com.idmlogic.sigma.manager.internal.EncryptionManagerImpl.decrypt(EncryptionManagerImpl.java:212)

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     ... 65 more

    2024-03-07 16:18:12,736 ERROR [com.idmlogic.sigma.authentication.oidc.OpenIDAuthenticationFilter] (default task-3) Not able to disambiguate the user Problem with the processing disabiguate user javax.crypto.BadPaddingException: Given final block not properly padded. Such issues can arise if a bad key is used during decryption.
    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3) com.idmlogic.sigma.authentication.saml.util.SAMLToolException: Problem with the processing disabiguate user javax.crypto.BadPaddingException: Given final block not properly padded. Such issues can arise if a bad key is used during decryption.

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at com.idmlogic.sigma.authentication.oidc.OpenIDAuthenticationFilter.disambiguateUser(OpenIDAuthenticationFilter.java:270)

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at com.idmlogic.sigma.authentication.oidc.OpenIDAuthenticationFilter.doFilter(OpenIDAuthenticationFilter.java:142)

    2024-03-07 16:18:12,736 ERROR [stderr] (default task-3)     at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:61)

    2024-03-07 16:18:12,752 ERROR [stderr] (default task-3)     at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)

    2024-03-07 16:18:12,752 ERROR [stderr] (default task-3)     at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:197)

    2024-03-07 16:18:12,752 ERROR [stderr] (default task-3)     at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)



    ------------------------------
    Thanks
    Sandeep
    ------------------------------


  • 2.  RE: IAzure OICD with Sigma 14.4 Issue: Identity Portal Unauthorized Access, please contact your administrator

    Posted Mar 07, 2024 07:32 PM

    Implemented SSO using Azure OIDC for Sigma 14.4. Post authentication with Azure credentials, I get the error. Any suggestion ? 



    ------------------------------
    Thanks
    Sandeep
    ------------------------------



  • 3.  RE: IAzure OICD with Sigma 14.4 Issue: Identity Portal Unauthorized Access, please contact your administrator

    Posted Apr 16, 2025 08:55 AM

    I am unable to access my identity governance application. I see an SSO error in the log.

    invalid_client HTTP Status Code: 401 Error Description: AADSTS7000222: The provided client secret keys for app xxx are expired

    How do we rotate/update the new client secret without being able to login/access the Identity governance admin portal? For some reason the breakglass URL doesn't seem to work. 

    Appreciate any suggestion !



    ------------------------------
    Thanks
    Sandeep
    ------------------------------