Environment
Self Service Password Reset 4.4
Self Service Password Reset 4.3
Self Service Password Reset 4.3
Advanced Authentication 6.x
Situation
Error 5071, Access denied, in SSPR Forgotten Password module
Error occurs when SSPR is configured to use Active Directory as user store
And OAuth integration between AAF and SSPR is enabled
Error message: Remote Error: access_denied {5071 ERROR_OAUTH_ERROR (incoming request from remote oauth server is indicating an error: access_denied)}
Resolution
Ensure the "OAuth Inject User Name Value" is configured as @LDAP:sAMAccount@ name in SSPR Configuration editor, Modules ⇨ Public ⇨ Forgotten Password ⇨ Profiles ⇨ default ⇨ OAuth
As shown below:
