22 March,17 at 10:49 PM
Applies to: Centrify Priveledge Service 16.12 and above
Problem:
When attempting to set-up a user or service account in the Privileged Service App within ServiceNow I get the following Java error:
Error getResources -> java.util.NoSuchElementException x_cenr3_priv_acces
Cause:
The user or service account has MFA enabled for authentication.
Resolution:
In Centrify Identity Service:
Create a Role (e.g. Service Accounts) and add the service account for ServiceNow.
Create an Authentication profile (e.g. User/Password) and only check the password box for the first challenge.
Create a Policy (e.g. Service Accounts), make sure it applies only to the role created to step # 1 and set it to User Security Policies > Login Policies > Default Auth profile if no conditions are met = User/Password.
In an incognito window, try to log in with the ServiceNow service account, you should only be challenged to provide a password.
In ServiceNow:
Navigate to the Centrify Privilege Service App > Properties and make sure the tenant URL, account and password are correct and press save.
Navigate to Centrify Privilege Service App > API Sync and make sure the check for Active is set. Configure interval if needed, press save and then Sync Now.
Navigate to Centrify Privilege Service App > Resources and you should see the resources there.