VIP Authentication Hub - Unable to turn on attribute based access control(ABAC)
search cancel

VIP Authentication Hub - Unable to turn on attribute based access control(ABAC)

book

Article ID: 277285

calendar_today

Updated On:

Products

VIP Authentication Hub

Issue/Introduction

After enabling the Attribute based access control preview feature in AuthHub, login to Admin console fails with the below error

"userIp":"x.x.x.x","userLoginId":"USER","userLoginIdAttributeMappingName":"user_loginid","userRiskLevel":"","userRiskScore":"100","userUniversalId":"USER","throwable":"com.broadcom.layer7authentication.core.exceptions.AuthHubException: 91000002\n\tat com.broadcom.layer7authentication.core.service.settings.SettingsCache.getPropertyValue

Environment

AuthHub 2.2

Resolution

If upgrade is performed on VIP AuthHub environment, it is important that you pass this parameter in the upgrade command.

--set ssp.featureFlags.dataseed.enabled=true
If this is not passed and ABAC is enabled then you will run into the issue to login to Admin console.

Additional Information

Uploading the documentation here which provides more details about the Attribute Based Access Control preview feature in VIP AuthHub.

Attachments

SSP Attribute Based Access Control v1.0.pdf get_app
Powered by Wolken Software