The following table shows status messages that Avaya Aura® Device Services can display depending on the OAuth2 test results.
Status |
Test result |
Description/Solution |
Test Id generated |
In Progress |
Test is in progress. |
SAML token from IDP received |
In Progress |
Avaya Aura® Device Services received a token from the identity provider. |
Access token generated successfully |
In Progress |
The identity provider generated an access token successfully. |
Generated token is valid |
Successful |
Avaya Aura® Device Services validated the token. Test completed successfully. |
Generated token is invalid |
Failed |
The identity provider generated a token, but one or more mandatory parameters are missing in the token. |
Scope is empty, Scope validation failed. |
Failed |
Client scopes are not configured on Keycloak. Ensure that Keycloak is correctly configured. For more information, see Configuring Keycloak settings and Modifying the attribute mapping between the third-party identity provider and Keycloak. |
JWT Signature validation failed |
Failed |
The generated token might be tampered. Re-run the test. |
JWT Token is expired. |
Failed |
Increase the access token lifespan. For more information, see Configuring access and refresh token expiry times. |
No supported roles/No username provided in token. |
Failed |
|
Exception in generating token from IDP code |
Failed |
The identity provider sent the code, but Avaya Aura® Device Services could not generate a valid token. Avaya Aura® Device Services displays this general error message when the exact error category cannot be determined. |
Keycloak is unavailable. |
Failed |
The Keycloak service is unavailable. Restart Keycloak. For more information, see Starting and stopping the Keycloak service. |