Error Received When Saving Data to LDAP: Access is Denied

Follow
    Applies to:
  • Legacy SecureAuth IdP
Deployment model:
  • On Premises
  • Affected SecureAuth IdP Versions: All

    Issue: When using a realm with a writable attribute, either the page or the logs will display the message:

    "Error received when saving data to LDAP, exception: Access is Denied"

     

    Description: The service account is missing the write permissions to the attributes that's defined as writable in the realm.

    For example, the SecureAuth998 realm uses either registeredAddress or postalAddress by default for OATH enrollment. If the service account is missing the write permissions for those attributes in AD, then it will display that message in the logs.

    Other examples:

    • Audio attribute for Device Fingerprinting.
    • Photo attribute for Geo Velocity/Access Histories

    Resolution: Grant write permissions to the necessary attributes.

     

     

    0 out of 0 found this helpful

    Comments

    0 comments

    Please sign in to leave a comment.