SCIM Group Push Error while updating user group membership for group null: Found an empty scim group string

Questions SCIM
1

Hi,

I am receiving the below error when attempting to push a SCIM group to my custom SCIM application. I have the same users assigned to the app using another group and have the integration configured to push groups. However, I do not see any requests come in from okta to my app.

There are other threads that are similar but not quite the same.

Unable to update Group Push mapping target App group avengers_scim: 
Error while updating user group membership for group null: Found an empty scim 
group string. Cannot update the group=AGr6brc02m4oBaLY81d7
2

@captam3rica , Where you able to resolve the above issue ?

4

In case anyone runs into this in the future. This error is likely the result of a SCIM server returning an empty string for the id attribute when Okta makes a POST request to create the group.

The below message returned from SCIM would cause this error in Okta,

{
   "displayName": "Power Users",
   "id": "",
   "members": [
      {
         "display": "some.user3@{somemail}.com",
         "value": "0bcc4205-bfd9-4d35-b3a7-ad1a77653bc2"
      }
   ],
   "meta": {
      "location": "/scim/v2/Groups/bc49935c-e11b-48c4-9630-1d12d84529a9",
      "resourceType": "Group"
   },
   "schemas": [
      "urn:ietf:params:scim:schemas:core:2.0:Group"
   ]
}

Properly returning the UUID value for the group object created on SCIM will avoid this.

1 Like