Affected SecureAuth IdP Versions: All
Issue: When using a realm with a writable attribute, either the page or the logs will display the message:
"Error received when saving data to LDAP, exception: Access is Denied"
Description: The service account is missing the write permissions to the attributes that's defined as writable in the realm.
For example, the SecureAuth998 realm uses either registeredAddress or postalAddress by default for OATH enrollment. If the service account is missing the write permissions for those attributes in AD, then it will display that message in the logs.
- Audio attribute for Device Fingerprinting.
- Photo attribute for Geo Velocity/Access Histories
Resolution: Grant write permissions to the necessary attributes.