Troubleshoot Cloud Identity Engine Issues
Table of Contents
Expand all | Collapse all
-
- Cloud Identity Engine Attributes
- Collect Custom Attributes with the Cloud Identity Engine
- View Directory Data
- Cloud Identity Engine User Context
- Create a Cloud Dynamic User Group
- Configure Third-Party Device-ID
- Configure an IP Tag Cloud Connection
- Configure Dynamic Privilege Access in the Cloud Identity Engine
- Configure Security Risk for the Cloud Identity Engine
-
-
- Configure Azure as an IdP in the Cloud Identity Engine
- Configure Okta as an IdP in the Cloud Identity Engine
- Configure PingOne as an IdP in the Cloud Identity Engine
- Configure PingFederate as an IdP in the Cloud Identity Engine
- Configure Google as an IdP in the Cloud Identity Engine
- Configure a SAML 2.0-Compliant IdP in the Cloud Identity Engine
- Configure a Client Certificate
- Configure an OIDC Authentication Type
- Set Up an Authentication Profile
- Configure Cloud Identity Engine Authentication on the Firewall or Panorama
- Configure the Cloud Identity Engine as a Mapping Source on the Firewall or Panorama
- Configure Dynamic Privilege Access in the Cloud Identity Engine
-
- Get Help
Troubleshoot Cloud Identity Engine Issues
If you are encountering issues with the Cloud Identity
Engine, refer to the following table for common issues and solutions.
If you are encountering specific issues when using the
Cloud Identity Engine, refer to the following table for common issues
and solutions. If you are still experiencing issues, be sure to
review how to Monitor Cloud Identity Engine Status and the Cloud Identity Engine Troubleshooting Checklist.
| What Do I Do If... | Resolution |
|---|---|
When I click Create to
create the SCIM Connector application in the Azure AD Portal, a Not found error
displays. | Refresh the page and recreate the SCIM Connector
application. |
| The Azure AD Portal displays that the sync is complete and there is a steady state for the SCIM Connector, but the user and group count does not display. | If the user and group count does not display,
the sync is not fully complete. To resolve the issue, complete the
following steps:
|
| The sync for the SCIM Connector is unable to complete due to duplicate group names. | Group names must be unique; resolve the duplicate
group names so that they are unique and Restart provisioning. If
you are unable to resolve the duplicate group names and you don’t
need data from the duplicate groups or to use them in security policy,
you can continue the setup. |
| I checked the status of the agent on the Directories page and the status is “In Progress” but no groups or OUs are listed. | While the domain is being synced, the In Progress status appears on the Directories page. If this is the first time the Cloud Identity Engine is syncing the domain, the groups and OUs may take some time to appear. If they do not display, delete then re-create the Cloud Identity Engine tenant and add the domain(s) again. |
| The hub does not redirect to display my Cloud Identity Engine tenants or displays a blank page. | If this issue occurs, contact support (see Get Help). |