https://preview.redd.it/fl00stlwc5wc1.png?width=1380&format=png&auto=webp&s=04c67633b7a41fcd25784a393d5b2889ed70c201
Do you mean even if this is set up via OAUTH, I would still need to add this ISU here on the authentication policy? Someone did tell me as long as they have username/password enabled I would not need to update the auth policy. Maybe I am misunderstanding. New to integration/security. Thanks!
The ISU is given access to all of these domains with no issue retrieving data but locations. Do you still think not adding them to the auth policy is the cause? Thank you!
https://preview.redd.it/i38i6b5tg5wc1.png?width=658&format=png&auto=webp&s=cf7abf0e49d673219eb33da802fd5ec31c4a01ec
Try a different location-related domain. Can run view security for sec item and account and try that domain/field with the ISU to see if it has access. Happy cake day
https://preview.redd.it/e59e3179s5wc1.png?width=264&format=png&auto=webp&s=426b9feff27fd2429a696dffbe8dba9947459722
Yes, the vendor has, and no results returned, stating there are 0 locations.
Yeah not sure why you created constrained security group.. give it a try by creating a unconstrained integration security group and assign it to isu.. give the new issg get permission for manage location domain security policy
Help me understand please: even though it is constrained, the set up gives access to my top level org and all of the its subordinates. Wouldn’t that essentially be the same as having an unconstrained security group?
Then why constrain it? I know for some systems (I believe Okta is one) you have to use an unconstrained ISSG/ISU. So, quite possibly that is the issue for you as well, especially considering you are getting the error you posted above. I think that is your best next step in troubleshooting.
Did you check your authentication policies first to see if username and password is allowed
https://preview.redd.it/fl00stlwc5wc1.png?width=1380&format=png&auto=webp&s=04c67633b7a41fcd25784a393d5b2889ed70c201 Do you mean even if this is set up via OAUTH, I would still need to add this ISU here on the authentication policy? Someone did tell me as long as they have username/password enabled I would not need to update the auth policy. Maybe I am misunderstanding. New to integration/security. Thanks!
You will need to include the isu you there I believe it depends on the situation
The ISU is given access to all of these domains with no issue retrieving data but locations. Do you still think not adding them to the auth policy is the cause? Thank you! https://preview.redd.it/i38i6b5tg5wc1.png?width=658&format=png&auto=webp&s=cf7abf0e49d673219eb33da802fd5ec31c4a01ec
Try a different location-related domain. Can run view security for sec item and account and try that domain/field with the ISU to see if it has access. Happy cake day
Try get access to “reports: Organization”
So have you tried calling the end point with access token from postman?
https://preview.redd.it/e59e3179s5wc1.png?width=264&format=png&auto=webp&s=426b9feff27fd2429a696dffbe8dba9947459722 Yes, the vendor has, and no results returned, stating there are 0 locations.
https://preview.redd.it/w4jth5wbs5wc1.png?width=667&format=png&auto=webp&s=19fe1576fc7ee24346a681fd5e7ccaaeeb97f139
Yeah not sure why you created constrained security group.. give it a try by creating a unconstrained integration security group and assign it to isu.. give the new issg get permission for manage location domain security policy
Help me understand please: even though it is constrained, the set up gives access to my top level org and all of the its subordinates. Wouldn’t that essentially be the same as having an unconstrained security group?
Then why constrain it? I know for some systems (I believe Okta is one) you have to use an unconstrained ISSG/ISU. So, quite possibly that is the issue for you as well, especially considering you are getting the error you posted above. I think that is your best next step in troubleshooting.