Symantec Identity Manager - Conector Google Apps - WSL7 - G-Suite cannot open with SCIM: Peer not authenticated
search cancel

Symantec Identity Manager - Conector Google Apps - WSL7 - G-Suite cannot open with SCIM: Peer not authenticated

book

Article ID: 246128

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

Getting the below error when trying to resolve issue: Error decrypting attribute eTDYN-str-multi-ca-06

When running:

etautil -u USER -p PWD -dyn update 'eTNamespaceName=MyEndpointType' eTDYNDirectory eTDYNDirectoryName='MyEndpoint' eTDYN-str-multi-ca-06='GSuite-PrivateKey'

:ETA_E_0020<RAC>, User Account 'XXXX' on 'DYN-Endpoint' read failed:
Connector Server Add failed: code 53 (UNWILLING_TO_PERFORM):
failed to modify entry
eTDYNDirectoryName=DYN-Endpoint,eTNamespaceName=YYYY,dc=im,dc=etasa: JCS@zzzzz: SCIM: peer not authenticated (ldaps://xx.xx.xx.xx:20411)

Environment

Release : 14.4

Component : Identity Manager

Resolution

This issue was caused by the API Gateway certificate not being imported into the Connector Server Keystore.

The most ideal way to resolve this issue is to connect to your Connector Server Admin Ui:

https://IPAddress:20443/main

Click on the Certificates Tab > Add > Enter information

Once the certificate is successfully imported then the communication to the endpoint will work and the etautil command can be run.

Additional Information

This error can be thrown upon endpoint creation and the resolution would be the same. Import the API gateway certificate into the connector server.