Matching User not found

Ganapathy · September 5, 2024, 5:20pm

We have a custom Okta app set up with SCIM provisioning. The app is of type SWA with the SCIM Base URLs properly configured. Our use case is to sync users added/removed in the Okta app with our external application.

However, when we try to assign a user to the application, we receive the following error:

Automatic provisioning of user <agent> to app <scim app> failed: Matching user not found.

I’ve confirmed that provisioning permissions for Create Users, Update Users, and Deactivate Users are enabled in the Okta app. Despite this, the provisioning still fails.

Any insights into what might be causing this issue or how to troubleshoot it further would be greatly appreciated!

daniel.sanders · September 6, 2024, 3:40pm

Hi @Ganapathy,

When we query for users we will send a GET to your server to determine if the user exists: SCIM 2.0 Protocol Reference - after that, if User Creation is on we’ll send a POST to create that user. If this isn’t happening, we should check and make sure everything is good on your app. Let’s try a few things:

Attempt to validate your API Credentials from the “Provisioning” tab under “Integration” to make sure that connection’s still alive. It probably is if you’re getting this particular error, but check just to make sure.
Ensure that “Push new users” is checked here, uncheck and recheck it and save the configuration
Under “To App” in the Provisioning section, uncheck and recheck “Create users” here as well and save it.

Give those a try and let me know if it helps!

Ganapathy · September 9, 2024, 6:04am

Hi Daniel

Tested the following

Validated my API credentials
Unchecked and checked ‘Push new users’
uncheck and recheck “Create users”

Still i am getting the same error message

Ganapathy · September 9, 2024, 6:07am

In the logs section I could see that

Push new user to external application (Success)
Sync User to external application (Failure)

Is this of any help?

Also this is the response for GET that we send from our application

response_data = {
        "schemas": ["urn:ietf:params:scim:api:messages:2.0:ListResponse"],
         "totalResults": 0,
         "startIndex": 1,
         "itemsPerPage": 0,
         "Resources": []
}

system · October 9, 2024, 6:07am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
User assignment failing SCIM	3	2833	August 1, 2022
Failed while trying to configure provisioning SCIM connection to existing app SCIM	2	2418	December 26, 2022
SCIM 2.0 Provisioning - An error occurred while pushing a profile update to this app SCIM	1	3275	February 12, 2024
SCIM Provisioning - group push issues SCIM	5	4440	September 16, 2021
SCIM provisioning fails due to incorrect search filter SCIM	2	1024	July 30, 2024

Matching User not found

Related topics