Policy Evaluation Error on Enterprise OIDC Connection

rueben.tiow · March 5, 2024, 8:06pm

Overview

This article explains the following error that might occur with an enterprise OpenID Connect (OIDC) connection:

access_denied error: “Policy evaluation failed for this request, please check the policy configurations.”

Applies To

Enterprise OIDC Connection
Policy Evaluation Error
Access Policy

Cause

When Okta is the Identity Provider (IdP) for the connection, this error indicates the access policy for the client application does not allow the scopes requested.

Solution

To resolve this issue, one of the following actions must be taken:

The IdP administrators must update the access policy to grant the scopes requested by the connection.
The scopes requested in the OIDC connection’s configuration must be changed to align with the access policy.

Topic		Replies	Views
Error with Okta Workplace Enterprise Connection Get Help missing-category , other	2	107	December 10, 2024
"error_description": "The resource owner or authorization server denied the request." when testing Okta/Auth0 connection Get Help connections , oidc-enterprise-connection	2	2486	November 25, 2024
Error when setting up Okta OIDC Get Help connections , oidc-enterprise-connection	2	1291	February 21, 2023
Okta Workforce or OIDC Connection Returning 403 Knowledge Articles	1	882	September 19, 2023
SSO with OIDC with an external IdP and Auth0 as AS (authorization service) JWT.io ouath , authorization-server , oidc-connection	2	855	May 15, 2024

Policy Evaluation Error on Enterprise OIDC Connection

Overview

Applies To

Cause

Solution

Related References

Related topics