Authentication Errors
API calls are authenticated with access tokens (API authentication tokens). An access token is a string representing an authorization issued to the client. A client can obtain tokens for local or LDAP users. This section lists errors that could arise while working with the authentication tokens.
| Action | Error Information | Possible Cause | Remediation |
|---|---|---|---|
| Create Token | The user does not have permission to authenticate using a certificate. | Certificate configuration does not allow authentication using certificate | Check if the settings that enable logging in through a certificate are configured. |
| Create Token | error getting client/user: Bad connection. | Possible reasoms: • Failed to fetch user from LDAP. • LDAP connection seems to be not working. | Test your LDAP connection and check if it is working. |
| Create Token | Token has been revoked | The refresh token has been revoked and it can not be used to create a new token. | Create a new token using client credentials. Refer to Tokens for details. |
| Create Token | failed to create refresh token | Possible reasons: • Storage crunch in the system. • High CPU utilization or memory crunch due to large number of memory intensive operations. | Restart the appliance. If problem persists, contact Thales Customer Support. |
| Create Token | Failed to locate domain | Possible reasons: • Domain does not exist. • User does not exist in the specified domain. | Check if the domain exists and if the user has the required permissions on the domain. |
| Create Token | Failed to validate certificate | No local or external CA exists for this certificate. | Validate the certificate and ensure that the CA is registered with system. |
| Revoke Refresh Token | record not found | Either client_id or refresh_token does not exist. | Ensure that the client_id and refresh_token are valid. |
| Revoke Refresh Token | failed to revoke tokens | Possible reasons: • Storage crunch in the system. • High CPU utilization or memory crunch due to large number of memory intensive operations. | Restart the appliance. If problem persists, contact Thales Customer Support. |
