Troubleshooting AWS Organization Sync Failure

Owned by Sagar Salokhe (Unlicensed)
Last updated: Aug 29, 2022 by Christine Gross
2 min read

Error-HTTP Error Response: 401 Unauthorized with error response for url=https://scim.us-west-2.amazonaws.com/<Tenant_ID>/scim/v2/Groups

Root Cause:

The configuration value for AWS SSO SCIM Access Token. (Required for SSO Groups) is invalid or expired.

Solution:

Login to AWS Account which is the master account for your AWS organization. Navigate to IAM Identity Center. Click the Actions drop down to the right of Identity source and click Manage provisioning.

Click Generate token to generate new Token.

Copy the generated token.

Use this token for the configuration value for AWS SSO SCIM Access Token. (Required for SSO Groups) and click Sync Now.