Skip to main content

Hi

I have a customer in APPS10 who is using SSO for client authentication (Azure AD). they can login in with SSO with no issues. Now they are doing some integrations from external system and they want to call IFS REST API using OAuth2. 
When they try to get access token (using ROPC) with their SSO credentials (i.e. email address of user and password), they get error: credentials rejected.


Then they created new user not registered in Azure AD (not SSO user) and now they can get the access token successfully with this user/password. But when they try to use this access token to invoke REST API they get error 401 (Unauthorized) --- this user was granted all needed projections.


Any ideas would be appreciated

 

Thanks

Hi Kamal, 

ROPC is generally not supported for users who are configured for SSO with Azure AD, especially if multifactor authentication (MFA) or conditional access policies are enabled. ROPC is typically limited to simpler authentication mechanisms and might not work with modern security setups like SSO via Azure AD. 

Did this issue get sorted?


Reply