Ben Watts
Articles
-
OIDC via WindowsSSO Authentication (or another Begin Site) fails with 'Invalid_Scope' or 'Unknown scope'
Version Affected: 21.04 and below Description: OIDC Realms configured to login via WindowsSSO (this can also apply to other Being Site options) can fail with 'Invalid_Scope' and 'Unknown scope' ...
-
QR and/or URL Enrollments fail with a 'qrProvision verify exception' error
Version Affected: 24.04 RU2/3Description: Enrollments fail and throw the below error in the Error logsClassic RealmsqrProvision verify exception: The settings property 'OATHToken' was not found.N...
-
Datastores are missing after upgrade to 24.4.4
Version Affected: 24.4.4 Description: After upgrading to 24.04 Rollup 4 (24.4.4), 'Identity Sources - Datastores' are no longer visible/presentOpening Developer Tools - Network Tab and going to t...
-
What is the least privilege an account needs within SQL if used for Integrated Security connections
Version Affected: All Description: This article explains the required permissions for an account within SQL if it is being used by SecureAuth Identity Platform (IdP) for Integrated Security conne...
-
Authentication attempts against New Experience Datastores fail with 'Invalid User' after SecureAuth G3 Intermediate Certificates have expired
Description: *** This is likely to only apply after May 16th 2025 ***After the SecureAuth G3 Intermediate Certificates have expired, some authentication attempts against New Experience Datastores ...
-
Upgrading to 24.4.3+ breaks custom Themes
Version Affected: 24.4.3+ Description: After upgrading to 24.4.3+, Realms using a Custom Theme may fail to load successfully and will display an error (the error displayed can change based on whi...
-
How to extract a PEM file from a PFX
Version Affected: AllDescription: How to extract a PEM file from a PFX without the Private Key Cause: Some Service Providers/Applications require a PEM file to be uploaded for services such as S...
-
How to rollover log files based on size and/or each day
Version Affected: AllDescription: Identity Platform (IdP) log files roll over to a new log file 24 hours after the previous log file was started, this article shows us how to change this so log f...
-
Radius Authentication Failing with Ivanti 22.7R2.6
Version Affected: Radius Description: After upgrading Ivanti ICS to 22.7R2.6, Radius Authentication fails Cause: Ivanti ICS 22.7R2.6 introduced a hardcoded Message-Authenticator requirementEven ...
-
Adaptive Authentication page takes a long time to open
Version Affected: All Description: This specifically applies to Air-Gapped deployments but can also apply to non Air-Gapped deployments if internet access is limitedOpening the Adaptive Authentic...