Message Image

Log in

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

IBM Security

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

Start collaborating

Skip main navigation (Press Enter).

IBM Verify

View Only

Expand all | Collapse all

Error "consent_required" despite "Do not ask for consent" enabled.

1. Error "consent_required" despite "Do not ask for consent" enabled.

0 Like
Carmine Salvatore
Posted 29 days ago

Reply
I am working with IBM Security Verify.
I have created a custom OIDC application and disabled the "user consent" by setting it to "Do not ask for consent."

However, when trying to log in from the OIDC client, after successfully authenticating on ISV, I am redirected to the application, which displays the following error directly in the URL:
error_description=CSIAQ0179E+The+system+could+not+prompt+for+user+consent.&state=XXXXXX5&error=consent_required

And on the page, the following message appears:
{"error": "invalid_grant"}

I tried making a request from the OIDC client with the prompt=none parameter to avoid requesting consent from ISV, but it didn't work.

To resolve the issue, I tested the following configurations:

1. Creating a Data Privacy Policy.

2. Creating an EULA and associating it with the application

Despite these configurations, the consent-related error remains the same.
Can anyone help me?
Thanks for your availability!

------------------------------
Carmine Salvatore
------------------------------

Powered by Higher Logic