Loading

Client ID and Client Secret Validation Failure Due to Disabled Business Group Owner — API Manager

Publish Date: May 14, 2026
Description
Symptoms
  • Application fails to start with error: "Client ID and Client Secret could not be validated against API Manager"
  • Credentials are correct and unchanged; re-entering and redeploying does not resolve the issue
  • All API instances in API Manager appear inactive (grayed out)
  • The Policies section in API Manager fails to load
  • Issue is reproducible across multiple browsers
  • Other applications in the same org continue to function normally
  • Transactions may still flow in the backend despite the UI showing inactive status


Root Cause
The Business Group (BG) owner account — configured as the Anypoint IdP-linked Org Owner — is in a disabled state. The Catalog service returns a 403 — "This user is disabled" response, which:
  • Prevents Client ID and Secret validation against API Manager
  • Causes all API instances under associated Business Groups to appear inactive
  • Blocks the Policies section from loading in the UI
 
Note: If two users with similar usernames exist in the org, verify which one is configured as the Org Owner — it may be the disabled account.


Resolution
  1. Navigate to Anypoint Platform → Access Management → Users
  2. Locate the disabled BG owner account (the Anypoint IdP-linked Org Owner)
  3. Re-enable the account
  4. Wait a few minutes for changes to propagate
  5. Verify that:
    • API instances return to an active state in API Manager
    • The application deploys and starts successfully
    • Client ID and Secret validation passes
Knowledge Article Number

005347754

 
Loading
Salesforce Help | Article