If Identity Applications are configured to use a non-administrator user as an Identity Vault Administrator, the non-administrator user must have [write] rights to the oidpInstanceData attribute in the subtree where the users reside. Otherwise, OSP logins can fail.
To set the write rights on the oidpInstanceData attribute for a non-administrator user:
Log in to iManager.
In theview, click .
Select the non-administrator user object, then click.
For oidpInstanceData attribute, set the, , and rights.
Clickto save and apply your changes.