cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Configure Azure Active Directory as source for SAP Cloud Identity Provisioning Server

chrislechn
Member

on ‎02-14-2019 5:36 PM

0 Kudos

Hello all,

I followed the documentation https://help.sap.com/viewer/f48e822d6d484fa5ade7dda78b64d9f5/Cloud/en-US/3d287fa432904f71a8f83d2d880...

As soon as I start a Job to read my users and groups from my Azure AD I get the following error message

org.quartz.JobExecutionException: Cannot execute provisioning job in tenant context: ef6520f1-2d5e-400a-96d9-04cf9d501cdb Caused by: com.sap.id.connector.exception.ProvisioningRuntimeException: Error during execution on behalf of tenant with ID: ef6520f1-2d5e-400a-96d9-04cf9d501cdb Caused by: com.sap.security.iag.provisioning.ProvisioningException: No target systems found for job 59983e91548255554760

I'm not sure if I need to add the Password parameter as Standard or Credential.

Any idea what I'm doing wrong or where I can find a detailed log?

Thank you for your support.

Best regards

Chris

Show replies
Show replies
vobu
Active Contributor
‎02-19-2019 4:51 PM
0 Kudos

getting the same error here - environment:

- regular MS Azure AD tenant

- application registered in tenant w/ necessary Graph API permissions

- validated working credentials of application (by using postman for a manual OAuth flow/try)

@chris: have you ever figured out sth in this regard?

Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

vobu
Active Contributor
‎03-24-2020 1:10 PM
0 Kudos

hi tam, sorry, haven't continued working with IPS - and at the time I did, haven't seen such an error.

"guesstimation" is that one of your destinations is set up with OAuth as authorziation, but onyl supports basic auth

hope you get this solved, v.

Show replies
Show replies
vobu
Active Contributor
‎02-22-2019 10:25 AM
0 Kudos

all right, got it figured out myself: the IPS needs both a source and a target system to actually trigger a "Read Job" from the source system.

Once I had a target defined, all went well.

Either I missed that in the documentation or it is simply not there. Well.

Show replies
Show replies
former_member668145
Discoverer
‎03-24-2020 12:02 PM
0 Kudos

Hi Volker,

according your recommendation I received the following error message:

"org.quartz.JobExecutionException: Cannot execute provisioning job in tenant context: 4308fab4-0e60-4f44-8d88-82322e39dec3 Caused by: com.sap.cloud.ips.connector.exception.ProvisioningRuntimeException: Error during execution on behalf of tenant with ID: 4308fab4-0e60-4f44-8d88-82322e39dec3 Caused by: java.lang.UnsupportedOperationException: Oauth destination null should use basic authentication"

Do you had any experience with this error message?

BR,

Tam

Sriram2009
Active Contributor
‎02-19-2019 5:12 PM
0 Kudos

Hi

Check this SAP note 2723050.

Regards

SS

Show replies
Show replies
vobu
Active Contributor
‎02-20-2019 8:49 AM
0 Kudos

not related to the issue - there seems to be a general problem with IPS trying to connect to MS Azure AD systems

Ask a Question