An Okta User appears to be correctly configured, but they are receiving login-denied messages in the System logs.
The CrowdStrike score (although data is present in the zta file) is not being passed to the Okta side.
Upon closer inspection, the following error is found in the Event Viewer logs:
PluginSignalManagerFactory.ReadConfiguration]: Failed to read plugin manifest com.crowdstrike.zta.json with SerializationException: Expecting element 'root' from namespace ''.. Encountered 'None' with name '', namespace ''
- Okta Verify
- Crowdstrike
This error message typically indicates the following primary issue:
Okta Verify was installed with insufficient permissions, preventing it from correctly reading the CrowdStrike ZTA plugin manifest file (com.crowdstrike.zta.json).
Verify Installer Permissions and Reinstall Okta Verify
The most common cause of this error is that the Okta Verify installer was not run with the necessary administrative privileges.
Steps
- Uninstall Okta Verify: Completely remove the existing installation of Okta Verify from the affected machine.
- Reinstall with Administrative Privileges: Right-click the Okta Verify installer and select "Run as administrator" to ensure it has the necessary permissions to install correctly.
