We need to import role in IDM. On importing it reports error(I will attach screenshot.): :Érror: (19:147) : cvc-complex-type.2.4.a: Invalid content was found starting with Element "ÄdminRole".
One of "{AccessRole, ProvisioningRole}" is expected. Error: Failed to import. *************** 1 error, 0 warning.


We found the Root cause. In Access Role Admin Policy and Owner Policy, there is refrence to Admin Role 'System Manager'.

If I delete '' from Admin Policy and Owner Policy, then import is successful.

But issue is, we have 100s of roles that need to be migrated in Prod. And it needs to be imported with System Manager part of Admin and Owner Policy. And System Manager role exist in system too. 

This error: Warning: Updating the IdentityMinder environment "identityEnv" Error: (19:147): cvc-complex-type.2.4.a: Invalid content was found starting with element "AdminRole".One of "{AccessRole, ProvisioningRole}" is expected. Error: Failed to import ********* 1 error(s), 0 warning(s)
Seems to come down to an order of operations issue

Changed the admin policy to:

Changed the owner policy

After the above changes I can import and have no errors: Warning:
Updating the IdentityMinder environment "identityEnv" Deploying role definitions... Importing Roles... ********* 0 error(s), 0 warning(s)