Trying to delete a device from PAM but getting this error message:

Error: PAM-UI-1502: Device 'device-name' not deleted because of Password Authority errors.

Release :4.1.X

Component : PRIVILEGED ACCESS MANAGEMENT

Looking in catalina.out at moment that is trying to delete will show up the cause:

"Cannot remove request server id=xxx, hostname='device-name' without first associated request scripts"

So looking to A2A scripts will find that has associated scripts. 

Deleted the associated A2A scripts associated with this device and after this will be possible remove device successfully.

- The error states that there was an A2A client with an associated script which was preventing the device from being deleted.
- Review the A2A device, check hostname and if its different than than the device name.
- For example., hostabc device is the one we are trying to remove, but its IP now resolves to device name deviceabc, so it must have been reused
- L1 to connect to the appliance through SSH and found the script associated to the A2A device, but it was not in the GUI
- Mark the script as deleted in the database. This allows you to be able to delete the device

- For hostcba, the hostname and device name were the same, but we could not delete it
- This device had the same issue where its scripts were not in the GUI
- We marked both the scripts and the script authorization as deleted, then were able to delete the new device

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/privileged-access-manager/4-1/protect-privileged-account-credentials/manage-credentials-between-applications-a2a/configure-a2a-authorization-mappings.html