Getting the below error when trying to resolve issue: Error decrypting attribute eTDYN-str-multi-ca-06
When running:
etautil -u USER -p PWD -dyn update 'eTNamespaceName=MyEndpointType' eTDYNDirectory eTDYNDirectoryName='MyEndpoint' eTDYN-str-multi-ca-06='GSuite-PrivateKey'
:ETA_E_0020<RAC>, User Account 'XXXX' on 'DYN-Endpoint' read failed:
Connector Server Add failed: code 53 (UNWILLING_TO_PERFORM):
failed to modify entry
eTDYNDirectoryName=DYN-Endpoint,eTNamespaceName=YYYY,dc=im,dc=etasa: JCS@zzzzz: SCIM: peer not authenticated (ldaps://xx.xx.xx.xx:20411)
Release : 14.4
Component : Identity Manager
This issue was caused by the API Gateway certificate not being imported into the Connector Server Keystore.
The most ideal way to resolve this issue is to connect to your Connector Server Admin Ui:
https://IPAddress:20443/main
Click on the Certificates Tab > Add > Enter information
Once the certificate is successfully imported then the communication to the endpoint will work and the etautil command can be run.
This error can be thrown upon endpoint creation and the resolution would be the same. Import the API gateway certificate into the connector server.