05/04/2023 04:31 AM
Hi Guys,
can you help to understand how saviynt rest api can be used by other applications when sso is enabled.
In Non-sso environment we are able to use the API with saviynt generated Bearer token. Where sso enabled environment it says 403 forbidden error.
can you please guide how to overcome this challenge. We have set localAuthEnabled to true for an account and granted access for updateuser APi using Custom Sav role, but still it says forbidden error.
Thanks
Sampath
05/04/2023 08:39 AM
Review this forums post to get it working - https://forums.saviynt.com/t5/identity-governance/set-api-password-to-access-saviynt-api-s-for-servi...
05/04/2023 09:07 AM
Hi Sivagami,
I have followed the same steps but it is not working for v2021.0. Please find below steps followed
1. Created an user.
2. assigned custom SavRole which gives access to required API. Added Required APIs in savRole under WebServiceAccess.
3.i have set the localAuthEnabed to 1(true)
4.Password expired flag is false
5.Using below api i was able to generate bearer token from postman
https://test-support.saviyntcloud.com/ECMv6/api/auth/login
6. Using above token i am trying to invoke following API, but it is taking me to SSO login page.
https://test-support.saviyntcloud.com/ECM/api/v5/updateUser
Thanks
Sampath