We have to enable Azure AD SSO, so we followed the steps in https://docs.uipath.com/orchestrator/standalone/2021.10/user-guide/configuring-sso-azure-adThe Azure AD button appeared, but a click on it results in the following error:{"StatusCode":500,"StatusDescription":"InternalServerError","Message":"IDX20803: Unable to obtain configuration from: 'System.String'."}.
Issue Description
When working with UiPath Orchestrator and encountering issues in the authentication process involving errors like "IDX20803: Unable to obtain configuration...", it is important to enable Personal Identifiable Information (PII) in the identity settings to fully understand and resolve the error. This article outlines how to enable PII and potentially resolve the identified issue through proxy configuration settings.
Resolution
- Enabling PII in Identity Settings
-
- To enable the PII for your Identity you can follow the steps mentioned here.
- Make sure to also restart the Orchestrator after making the changes (run iisreset from an admin command prompt).
- Understanding the Error
-
- Once PII is enabled, you may see an error similar to the following:
2023-08-02 16:52:02.6439 UiPath.IdentityServer.Web.Middleware.ExceptionHandlingMiddleware IDX20803: Unable to obtain configuration from: 'https://login.microsoftonline.com/{AppID}/.well-known/openid-configuration'.
-
- This error indicates that the Orchestrator cannot access a necessary Azure AD URL due to potential firewall, network, or improper proxy configuration issues.
- Configuring the Proxy Settings
If a proxy issue is suspected, forcing the Orchestrator to use your proxy configuration can be a solution. Follow these steps to set the proxy inside a system variable:
-
- Search for "System Variables" in your taskbar.
- Click on "Edit System Environment Variables".
- Click on "Environment Variables".
- In the "System Variables" section, add a new variable.
- Set the variable name to "HTTP_PROXY".
- Set the variable value to your proxy address.
After configuring the proxy settings, restart the server to apply the changes and potentially resolve the error.
If the issue persists, further investigate potential firewall or network issues influencing the connection to the Azure AD URL.