User is having an issue getting to resources she has used before. When trying to access target accounts she gets Error: PAM-UI-1005: Authorization failed. User does not have permission for this action.
Release : May be observed in any PAM release as of January 2023.
This error is normally caused by a recently added role to users or a group of users. Review any recently created or added roles. Backout these roles and test again. If this resolves the issue, review the permissions of the newly created roles.
Another potential cause could be an inconsistent user entry in the PAM database. If you find the user in the Users > Manage Users page, but not in any Credential Manager user group, such as the Standard Users group, then the problem likely is that at one point this user was deleted in the Credential Manager database, but not in the Access database. Credential Manager user groups can be viewed from the Credentials > Manage Credential Groups > Credential Groups page. Edit the group(s) and search for the user under the Users tab. You also can try to use the "+" icon to add a user. This should bring up the list of all eligible users. If the user indeed is not found, you need to open a case with PAM Support.