Skip to main content

Discussion

 Chunzhi Hong (Chunzhi_Hong)
PEGA
Principal System Architect
Pegasystems Inc.
JP
Chunzhi_Hong Member since 2013 145 posts
PEGA
Posted: 1 week 2 days ago
Last activity: 3 days 8 hours ago
Posted: 1 Mar 2025 0:10 EST
Last activity: 7 Mar 2025 5:57 EST

OAuth2 Client registration is not found for C11N Application

When you migrate a new C11N app from one environment to another, you might face login issue which generate exceptions like below..

(root cause)
Type com.pega.pegarules.pub.PRRuntimeException

Message OAuth2 Client registration is not found for C11N Application : aim. C11N Application must be registered as OAuth2 Client

Stack at com.pega.pegarules.session.internal.mgmt.authentication.AATTokenUtil.generateAndSetCookiesForConstellationAppln(AATTokenUtil.java:104)
at com.pega.pegarules.session.internal.mgmt.authentication.SchemePRAuth.performPostAuthentication(SchemePRAuth.java:814)
at com.pega.pegarules.session.internal.mgmt.authentication.SchemePRSPA.performPostAuthentication(SchemePRSPA.java:137)
at com.pega.pegarules.session.internal.mgmt.authentication.Authentication.executePostAuthenticationPolicies(Authentication.java:2952)
at com.pega.pegarules.session.internal.mgmt.authentication.Authentication.performPostAuthentication(Authentication.java:2940)
at com.pega.pegarules.session.internal.engineinterface.service.HttpAPI.handleAuthentication(HttpAPI.java:3021)
at com.pega.pegarules.session.external.engineinterface.service.EngineAPI.activityExecutionProlog(EngineAPI.java:644)
at com.pega.pegarules.session.external.engineinterface.service.EngineAPI.processRequestInner(EngineAPI.java:466)
at jdk.internal.reflect.GeneratedMethodAccessor174.invoke(Unknown:Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

"OAuth2 Client registration" is required for C11N application, and usually it will be generated automatically when you create a new C11N application.. however, "OAuth2 Client registration" may not be generated automatically when you import a RAP package for C11N application... you can not login to the new C11N application if this unfortunate situation happens... to solve the issue...

  1. login to the system with an operator id that has "PRPC:Administrators" as default access group.
  2. In devstudio, open the C11N application rule definition which "OAuth2 Client registration" is missing.
  3. In devstudio, open Rule-Application.pzRegisterConstellationAppAsOAuth2Client activity
  4. Run pzRegisterConstellationAppAsOAuth2Client from Actions menu
  5. Set the activity Run context.. Thread: {thread_of_C11N_app_rule}, Page: "Copy existing page", Page to copy: "RH_1(Rule-Application)"
  6. click Run..
  7. go to "OAuth 2.0 Client Registration" instance landing page (DevStudio > Rocords > Security), confirm PegaApp_{C11NApp} is generated.

run-pzRegisterConstellationAppAsOAuth2Client

 

***Edited by Moderator Rupashree S. to add Capability tags***
To see attachments, please log in.
Pega Platform '24.2
Pega Platform '24.1
Pega Platform
Constellation
Security
How To
Support Case Exists

  • Reply

Related content:

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice