AWS IAM Identity Center provisioning flow fails with the following error visible in the Okta dashboard:

Automatic profile push of user <username> to app AWS IAM Identity Center failed: Error while trying to push profile update for <username>: Bad Request. Errors reported by remote server: 2 validation errors detected: Value at 'operations.2.updateAttributes.addresses.1.type' failed to satisfy constraint: Member must have length greater than or equal to 1; Value at 'operations.2.updateAttributes.addresses.1.type' failed to satisfy constraint: Member must satisfy regular expression pattern: <regular expression pattern>

• AWS IAM Identity Center
• Provisioning
• Error

This error is returned by the AWS SCIM server. Based on the error message, the issue is related to the "addresses" attribute, specifically the "type" field within the addresses list. The error indicates that the value at operations.2.updateAttributes.addresses.1.type either does not meet the minimum length requirement or does not match the expected regular expression pattern.

1. Check the User's App User Profile to confirm that the addresses.type field is populated with a valid, non-empty value and matches the required pattern.
2. Afterward, attempt the user provisioning again. Go to Okta Admin Console and navigate to Dashboard > Tasks. Any failed assignments should appear under Tasks. 

3. After identifying the failed task for the user that should be retried, click on Retry Selected.

4. If the issue still persists, please contact AWS support for more details and steps on how to resolve this error.

Related References

• AWS: Configuration Guide