I am reading some information from cookies in a PRCustom Authentication like Transit ID and Role and setting them in "Operator" page. I am getting the following error in logs with failed authentication
Authentication failed because the constructed Data-Admin-Operator-ID instance failed to pass validation. The most likely cause for this is that your Data-Admin-AuthService record attempts to map directory attributes to PROPERTIES THAT DO NOT BELONG TO DATA-ADMIN-OPERATOR-ID class. Check your D-A-AuthService record for bad entries or typos.
This is only happening when i am setting the custom application properties, if i remove them it seems to work fine.
Are we not supposed to update any data to operator during authentication ?
Good question. First of all check if the properties are created in the inheritance path of Data-Admin-Operator-ID class. Second check the mapping in your authservice rule. Third, the most trickiest, make sure these properties are available for the access group of PegaRULES:Unauthenticated.
The initial requestor before authentication should have access to your custom properties before setting its own requestor accessgroup and ruleset stack.
Posted: 7 years ago
Posted: 28 Jul 2015 10:49 EDT
Naveen Mandapati (NaveenM4274)
Lead System Architect