000034185 - Clicking on the Salesforce AFX connector 'Get OAuth 2.0 Access Token' button results in a redirect_uri_mismatch error in RSA Identity Governance & Lifecycle

Document created by RSA Customer Support Employee on Nov 1, 2016Last modified by RSA Customer Support on Oct 31, 2019
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000034185
Applies ToRSA Product Set: Identity Governance & Lifecycle 
RSA Versions: All
     After configuring a Salesforce AFX Connector in RSA Identity Governance & Lifecycle, clicking on the       Get OAuth 2.0 Access Token button results in the error below in the user interface (      AFX >       Connectors > {      connector-name} >       Settings tab >       Go OAuth 2.0 Access Token.)     



     User-added image   
CauseThis error occurs if the RSA Identity Governance & Lifecycle server is not listed under the Callback URL for the Salesforce instance.
ResolutionStarting in RSA Identity Governance & Lifecycle 7.0.2 P03 and 7.1.0, the steps to resolve this error may be found in the Salesforce Application wizard.
  1. In the RSA Identity Governance & Lifecycle user interface, go to Resources > Applications > Create Application.
  3. Check the checkbox next to the Salesforce option and click on Next.
  5. Scroll down to the section entitled Enable OAuth Settings - Register your App.
  7. Follow the steps in that section and add the aveksa server URL in the Callback URL box.

     User-added image   

  1. Click Next if you are creating a Salesforce application, or click Cancel if you do not need to create another application.

NOTE: If you already have a Salesforce application resource in RSA Identity Governance & Lifecycle, then access the Salesforce application wizard as noted above in order to get the instructions for adding the callback URL. There is no need to create another application.